hxxps://clickthis[.]photo/7BFBNH

Resubmissions

23/08/2024, 11:46 UTC

240823-nw9txsvclk 3

20/08/2024, 09:04 UTC

240820-k1x45stbrg 8

20/08/2024, 08:51 UTC

240820-ksmy7sxapm 10

20/08/2024, 08:11 UTC

240820-j3k2xs1flg 10

Analysis

max time kernel
1846s
max time network
1837s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
20/08/2024, 09:04 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://clickthis.photo/7BFBNH

Score

8^/10

bootkit discovery persistence privilege_escalation spyware stealer upx

Malware Config

Signatures

Downloads MZ/PE file

Drops file in Drivers directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\drivers\spoclsv.exe	Gnil.exe
File created	C:\Windows\SysWOW64\drivers\spoclsv.exe	Gnil.exe

Checks computer location settings 2 TTPs 7 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\Control Panel\International\Geo\Nation	Free YouTube Downloader.exe
Key value queried	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\Control Panel\International\Geo\Nation	msedge.exe
Key value queried	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\Control Panel\International\Geo\Nation	msedge.exe
Key value queried	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\Control Panel\International\Geo\Nation	msedge.exe
Key value queried	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\Control Panel\International\Geo\Nation	msedge.exe
Key value queried	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\Control Panel\International\Geo\Nation	msedge.exe
Key value queried	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\Control Panel\International\Geo\Nation	msedge.exe

Event Triggered Execution: Component Object Model Hijacking 1 TTPs
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
persistence privilege_escalation

Component Object Model Hijacking
T1546.015

Executes dropped EXE 39 IoCs

pid	Process
1840	python-3.12.5-amd64.exe
6120	python-3.12.5-amd64.exe
5392	python.exe
212	python.exe
4472	spoclsv.exe
5728	butterflyondesktop.tmp
2284	ButterflyOnDesktop.exe
5380	msedge.exe
3928	msedge.exe
1516	msedge.exe
6108	msedge.exe
5992	msedge.exe
6004	msedge.exe
3136	msedge.exe
6072	msedge.exe
5876	Free YouTube Downloader.exe
1440	Box.exe
2412	msedge.exe
2756	svchost.exe
5884	taskhost.exe
2200	svchost.exe
6136	taskhost.exe
1440	svchost.exe
3228	taskhost.exe
5484	svchost.exe
2788	taskhost.exe
1808	svchost.exe
5500	svchost.exe
3284	taskhost.exe
3392	svchost.exe
5380	taskhost.exe
5600	svchost.exe
4064	taskhost.exe
5636	svchost.exe
5708	taskhost.exe
5424	svchost.exe
2308	taskhost.exe
3308	svchost.exe
5696	taskhost.exe

Loads dropped DLL 47 IoCs

pid	Process
6120	python-3.12.5-amd64.exe
1144	MsiExec.exe
5392	python.exe
5392	python.exe
5392	python.exe
5392	python.exe
5392	python.exe
5392	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
212	python.exe
4668	Floxif.exe
5380	msedge.exe
3928	msedge.exe
1516	msedge.exe
1516	msedge.exe
6108	msedge.exe
6108	msedge.exe
5992	msedge.exe
5992	msedge.exe
6004	msedge.exe
6004	msedge.exe
3136	msedge.exe
6072	msedge.exe
3136	msedge.exe
6072	msedge.exe
3464	Process not Found
2412	msedge.exe
2412	msedge.exe

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral1/memory/4668-13241-0x0000000010000000-0x0000000010030000-memory.dmp	upx
behavioral1/memory/4668-13245-0x0000000010000000-0x0000000010030000-memory.dmp	upx

Adds Run key to start application 2 TTPs 4 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\{65f0caff-14d5-41c8-bfcc-cf071c618bc3} = "\"C:\\Users\\Admin\\AppData\\Local\\Package Cache\\{65f0caff-14d5-41c8-bfcc-cf071c618bc3}\\python-3.12.5-amd64.exe\" /burn.runonce"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ButterflyOnDesktop	butterflyondesktop.tmp
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ButterflyOnDesktop = "C:\\Program Files (x86)\\Butterfly on Desktop\\ButterflyOnDesktop.exe"	ButterflyOnDesktop.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Free Youtube Downloader = "C:\\Windows\\Free Youtube Downloader\\Free Youtube Downloader\\Free YouTube Downloader.exe"	FreeYoutubeDownloader.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Enumerates connected drives 3 TTPs 43 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\I:	msiexec.exe
File opened (read-only)	\??\k:	xpaj.exe
File opened (read-only)	\??\l:	xpaj.exe
File opened (read-only)	\??\t:	xpaj.exe
File opened (read-only)	\??\w:	xpaj.exe
File opened (read-only)	\??\x:	xpaj.exe
File opened (read-only)	\??\B:	msiexec.exe
File opened (read-only)	\??\H:	msiexec.exe
File opened (read-only)	\??\e:	xpaj.exe
File opened (read-only)	\??\i:	xpaj.exe
File opened (read-only)	\??\j:	xpaj.exe
File opened (read-only)	\??\W:	msiexec.exe
File opened (read-only)	\??\Z:	msiexec.exe
File opened (read-only)	\??\S:	msiexec.exe
File opened (read-only)	\??\V:	msiexec.exe
File opened (read-only)	\??\Y:	msiexec.exe
File opened (read-only)	\??\h:	xpaj.exe
File opened (read-only)	\??\m:	xpaj.exe
File opened (read-only)	\??\o:	xpaj.exe
File opened (read-only)	\??\G:	msiexec.exe
File opened (read-only)	\??\L:	msiexec.exe
File opened (read-only)	\??\s:	xpaj.exe
File opened (read-only)	\??\u:	xpaj.exe
File opened (read-only)	\??\U:	msiexec.exe
File opened (read-only)	\??\A:	msiexec.exe
File opened (read-only)	\??\T:	msiexec.exe
File opened (read-only)	\??\Q:	msiexec.exe
File opened (read-only)	\??\n:	xpaj.exe
File opened (read-only)	\??\K:	msiexec.exe
File opened (read-only)	\??\O:	msiexec.exe
File opened (read-only)	\??\N:	msiexec.exe
File opened (read-only)	\??\q:	xpaj.exe
File opened (read-only)	\??\r:	xpaj.exe
File opened (read-only)	\??\v:	xpaj.exe
File opened (read-only)	\??\E:	msiexec.exe
File opened (read-only)	\??\J:	msiexec.exe
File opened (read-only)	\??\R:	msiexec.exe
File opened (read-only)	\??\X:	msiexec.exe
File opened (read-only)	\??\p:	xpaj.exe
File opened (read-only)	\??\M:	msiexec.exe
File opened (read-only)	\??\P:	msiexec.exe
File opened (read-only)	\??\g:	xpaj.exe
File opened (read-only)	\??\y:	xpaj.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 4 IoCs

Web Service

T1102

flow	ioc
748	raw.githubusercontent.com
749	raw.githubusercontent.com
391	raw.githubusercontent.com
392	raw.githubusercontent.com

Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

Bootkits write to the MBR to gain persistence at a level below the operating system.

bootkit persistence

Bootkit

T1542.003

description	ioc	Process
File opened for modification	\??\PHYSICALDRIVE0	xpaj.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	\??\c:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\ccme_ecc.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.Getstarted_8.2.22942.0_x64__8wekyb3d8bbwe\clrcompression.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOInstallerUI.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Threading.Tasks.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\osfimm.dll	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Common Files\System\msadc\msadce.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\demux\libsubtitle_plugin.dll	xpaj.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\DATATRANSFORMERWRAPPER.DLL	xpaj.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\msdaenum.dll	xpaj.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\1033\PPINTL.DLL	xpaj.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\d3dcompiler_47.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\Java\jre-1.8\bin\instrument.dll	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Google\Update\1.3.36.371\psmachine_64.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll	xpaj.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\j2pkcs11.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.ServiceModel.Web.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.27323.0_x64__8wekyb3d8bbwe\msvcp140_2_app.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\Microsoft Office\root\Office16\OSFPROXY.DLL	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Runtime.Extensions.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\ja\PresentationCore.resources.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradfun_plugin.dll	xpaj.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\api-ms-win-core-string-l1-1-0.dll	xpaj.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\j2gss.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Microsoft\EdgeUpdate_bk\1.3.195.15\msedgeupdateres_ca-Es-VALENCIA.dll	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Microsoft\EdgeUpdate_bk\1.3.195.15\MicrosoftEdgeUpdateCore.exe	xpaj.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\es\UIAutomationProvider.resources.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\mso40uiimm.dll	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Common Files\Microsoft Shared\ink\pipanel.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\ja\System.Data.Services.resources.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Xml.XPath.dll	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Microsoft\EdgeUpdate_bk\1.3.195.15\msedgeupdateres_mt.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\iacom2im.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1903.1152.0_x64__8wekyb3d8bbwe\System.AppContext.dll	xpaj.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\RTC.DLL	xpaj.exe
File opened for modification	C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\Microsoft.PackageManagement.CoreProviders.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_output\libglinterop_dxva2_plugin.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Threading.Thread.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\Java\jre-1.8\bin\pack200.exe	xpaj.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\de\UIAutomationTypes.resources.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Diagnostics.Debug.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Security.Cryptography.OpenSsl.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\de\PresentationCore.resources.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ielowutil.exe	xpaj.exe
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadcer.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\control\liboldrc_plugin.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\Common Files\microsoft shared\ClickToRun\msvcp140.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\mscordbi.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\ja\UIAutomationClient.resources.dll	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Common Files\Microsoft Shared\VC\msdia100.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.WindowsFeedbackHub_1.1907.3152.0_x64__8wekyb3d8bbwe\Helper.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe\Solitaire.exe	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Common Files\Microsoft Shared\ink\mshwLatin.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\RuntimeConfiguration.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\osfsharedimm.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\WindowsProxiesAndStubs.dll	xpaj.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Globalization.dll	xpaj.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\notification_helper.exe	xpaj.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.SqlServer.Configuration.SString.dll	xpaj.exe
File opened for modification	\??\c:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe	xpaj.exe
File opened for modification	\??\c:\Program Files (x86)\Common Files\System\wab32.dll	xpaj.exe

Drops file in Windows directory 56 IoCs

description	ioc	Process
File created	C:\Windows\Installer\SourceHash{F88968D7-7934-415F-910A-4C35E6528C6C}	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a40.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a18.msi	msiexec.exe
File created	C:\Windows\Installer\SourceHash{C0BCA7FE-EABE-4740-B19D-FAF0C1DFF90C}	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a3b.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a18.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a3a.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a36.msi	msiexec.exe
File created	C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Uninstall.ini	FreeYoutubeDownloader.exe
File opened for modification	C:\Windows\Installer\e5f8a1d.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a36.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a3f.msi	msiexec.exe
File created	C:\Windows\Installer\SourceHash{C43FD2AD-079B-409F-ADE9-FD287B1F79F0}	msiexec.exe
File created	C:\Windows\notepad.dll.sys.exe	Zika.exe
File opened for modification	C:\Windows\Installer\	msiexec.exe
File opened for modification	C:\Windows\Installer\MSI9F97.tmp	msiexec.exe
File created	C:\Windows\Installer\e5f8a44.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\MSICC85.tmp	msiexec.exe
File created	C:\Windows\Installer\SourceHash{C3052A24-45DB-4723-AD99-9025FC199975}	msiexec.exe
File created	C:\Windows\Installer\e5f8a1d.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a21.msi	msiexec.exe
File opened for modification	C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Free YouTube Downloader.exe	FreeYoutubeDownloader.exe
File opened for modification	C:\Windows\Installer\MSI8E50.tmp	msiexec.exe
File created	C:\Windows\Installer\e5f8a2c.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a1c.msi	msiexec.exe
File created	C:\Windows\Installer\SourceHash{A576F2EB-97DB-4B01-9422-B8E1FA15B92B}	msiexec.exe
File created	C:\Windows\Installer\SourceHash{49C6B471-DE43-4ECA-B4F2-2CE5D7BF8F6D}	msiexec.exe
File created	C:\Windows\Installer\e5f8a30.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\MSIFB59.tmp	msiexec.exe
File opened for modification	C:\Windows\notepad.dll.sys.exe	Zika.exe
File opened for modification	C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log	msiexec.exe
File created	C:\Windows\Installer\SourceHash{B2ACF787-C0C6-4049-B5E0-728FDE281A0C}	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a22.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a26.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a31.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a27.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a27.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a2c.msi	msiexec.exe
File created	C:\Windows\Installer\SourceHash{3E498CAA-A927-434A-9A52-1C0BAB891020}	msiexec.exe
File opened for modification	C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Free YouTube Downloader.exe	FreeYoutubeDownloader.exe
File created	C:\Windows\Installer\e5f8a35.msi	msiexec.exe
File created	C:\Windows\Installer\e5f8a40.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\MSIFCD1.tmp	msiexec.exe
File created	C:\Windows\Installer\inprogressinstallinfo.ipi	msiexec.exe
File created	C:\Windows\Installer\e5f8a22.msi	msiexec.exe
File created	C:\Windows\Installer\SourceHash{0DC6C3A0-5CF6-46F6-B639-80DA74882478}	msiexec.exe
File created	C:\Windows\Installer\e5f8a2b.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\MSIAE8D.tmp	msiexec.exe
File opened for modification	C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Box.exe	FreeYoutubeDownloader.exe
File opened for modification	C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Uninstall.exe	FreeYoutubeDownloader.exe
File opened for modification	C:\Windows\Installer\MSIF77F.tmp	msiexec.exe
File opened for modification	C:\Windows\Installer\MSI8D06.tmp	msiexec.exe
File opened for modification	C:\Windows\Installer\MSI9313.tmp	msiexec.exe
File opened for modification	C:\Windows\Installer\e5f8a31.msi	msiexec.exe
File opened for modification	C:\Windows\Installer\MSIDE78.tmp	msiexec.exe
File created	C:\Windows\Installer\e5f8a3b.msi	msiexec.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Program crash 2 IoCs

pid	pid_target	Process	procid_target
1480	4668	WerFault.exe	249
1900	4668	WerFault.exe	249

System Location Discovery: System Language Discovery 1 TTPs 44 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Floxif.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	WinNuke.98.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	butterflyondesktop.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Zika.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	AcroRd32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Mabezat.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	xpaj.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	FreeYoutubeDownloader.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	python-3.12.5-amd64.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	ButterflyOnDesktop.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	python-3.12.5-amd64.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Gnil.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	MsiExec.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Mabezat.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	svchost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	butterflyondesktop.tmp
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhost.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	FreeYoutubeDownloader.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Box.exe

Checks SCSI registry key(s) 3 TTPs 3 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A	taskmgr.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000	taskmgr.exe

Checks processor information in registry 2 TTPs 5 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	AcroRd32.exe
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	WINWORD.EXE
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	AcroRd32.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\BIOS	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemFamily	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU	WINWORD.EXE

Modifies Internet Explorer settings 1 TTPs 1 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	AcroRd32.exe

Modifies registry class 64 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\Shell	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\Shell\editwithidle\Subcommands	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConFile\shellex	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.CompiledFile\shell	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.CompiledFile\shellex\DropHandler\ = "{BEA218D2-6950-497B-9434-61683EC065FE}"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{B2ACF787-C0C6-4049-B5E0-728FDE281A0C}\ = "{B2ACF787-C0C6-4049-B5E0-728FDE281A0C}"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{3E498CAA-A927-434A-9A52-1C0BAB891020}\ = "{3E498CAA-A927-434A-9A52-1C0BAB891020}"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConFile\Shell\editwithidle\shell\edit312\MUIVerb = "Edit with IDLE 3.12 (64-bit)"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\cpp_auto_file	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{0DC6C3A0-5CF6-46F6-B639-80DA74882478}\Dependents\{65f0caff-14d5-41c8-bfcc-cf071c618bc3}	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{A576F2EB-97DB-4B01-9422-B8E1FA15B92B}\Dependents	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{C0BCA7FE-EABE-4740-B19D-FAF0C1DFF90C}\Version = "3.12.5150.0"	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.ArchiveFile\shell\open	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\.cpp\ = "cpp_auto_file"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{49C6B471-DE43-4ECA-B4F2-2CE5D7BF8F6D}\Dependents	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{A576F2EB-97DB-4B01-9422-B8E1FA15B92B}\Dependents\{65f0caff-14d5-41c8-bfcc-cf071c618bc3}	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{F88968D7-7934-415F-910A-4C35E6528C6C}\DisplayName = "Python Launcher"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\Shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Python\\Launcher\\py.exe\" \"%L\" %*"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConFile\shellex\DropHandler\ = "{BEA218D2-6950-497B-9434-61683EC065FE}"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\.pyzw\Content Type = "application/x-zip-compressed"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConFile\Shell\editwithidle\shell\edit312	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\.py\ = "Python.File"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\.pyd\ = "Python.Extension"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\CPython-3.12\Version = "3.12.5150.0"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\CPython-3.12\DisplayName = "Python 3.12.5 (64-bit)"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\DefaultIcon\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Python\\Launcher\\py.exe\",1"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.Extension\ = "Python Extension Module"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConArchiveFile\ = "Python Zip Application File (no console)"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{49C6B471-DE43-4ECA-B4F2-2CE5D7BF8F6D}\Dependents\{65f0caff-14d5-41c8-bfcc-cf071c618bc3}	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{A576F2EB-97DB-4B01-9422-B8E1FA15B92B}\ = "{A576F2EB-97DB-4B01-9422-B8E1FA15B92B}"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.ArchiveFile\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Python\\Launcher\\py.exe\" \"%L\" %*"	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.ArchiveFile\ = "Python Zip Application File"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.ArchiveFile\DefaultIcon	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\.pyzw	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConFile\Shell\editwithidle\shell\edit312\command	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConFile\Shell\open\command	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{3E498CAA-A927-434A-9A52-1C0BAB891020}\Dependents\{65f0caff-14d5-41c8-bfcc-cf071c618bc3}	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\shellex\DropHandler	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.CompiledFile\shellex\DropHandler	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.Extension	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.ArchiveFile\shellex\DropHandler\ = "{BEA218D2-6950-497B-9434-61683EC065FE}"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\CLSID\{BEA218D2-6950-497B-9434-61683EC065FE}	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{B2ACF787-C0C6-4049-B5E0-728FDE281A0C}\DisplayName = "Python 3.12.5 Core Interpreter (64-bit)"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{A576F2EB-97DB-4B01-9422-B8E1FA15B92B}\DisplayName = "Python 3.12.5 Development Libraries (64-bit)"	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{C43FD2AD-079B-409F-ADE9-FD287B1F79F0}\ = "{C43FD2AD-079B-409F-ADE9-FD287B1F79F0}"	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\shell\open\command	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConArchiveFile\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Python\\Launcher\\pyw.exe\" \"%L\" %*"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer	python-3.12.5-amd64.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{C3052A24-45DB-4723-AD99-9025FC199975}\Version = "3.12.5150.0"	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.CompiledFile\shell\open\command	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{3E498CAA-A927-434A-9A52-1C0BAB891020}\DisplayName = "Python 3.12.5 Documentation (64-bit)"	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.NoConFile\shellex\DropHandler	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\Shell\open\command	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.File\shellex\DropHandler\ = "{BEA218D2-6950-497B-9434-61683EC065FE}"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\.pyo	msiexec.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Python.Extension\DefaultIcon\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Python\\Launcher\\py.exe\",3"	msiexec.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{C43FD2AD-079B-409F-ADE9-FD287B1F79F0}\Dependents	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{B2ACF787-C0C6-4049-B5E0-728FDE281A0C}\Dependents	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Installer\Dependencies\{0DC6C3A0-5CF6-46F6-B639-80DA74882478}	python-3.12.5-amd64.exe
Key created	\REGISTRY\USER\S-1-5-21-656926755-4116854191-210765258-1000_Classes\Local Settings	OpenWith.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 193369.crdownload:SmartScreen	msedge.exe

Suspicious behavior: AddClipboardFormatListener 2 IoCs

pid	Process
4396	WINWORD.EXE
4396	WINWORD.EXE

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
4684	msedge.exe
4684	msedge.exe
3484	msedge.exe
3484	msedge.exe
1484	identity_helper.exe
1484	identity_helper.exe
5196	msedge.exe
5196	msedge.exe
5196	msedge.exe
5196	msedge.exe
2968	msedge.exe
2968	msedge.exe
4392	msedge.exe
4392	msedge.exe
5028	msedge.exe
5028	msedge.exe
5992	msedge.exe
5992	msedge.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
4812	msiexec.exe
412	Gnil.exe
412	Gnil.exe
412	Gnil.exe
412	Gnil.exe
412	Gnil.exe
412	Gnil.exe
4472	spoclsv.exe
4472	spoclsv.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe

Suspicious behavior: GetForegroundWindowSpam 5 IoCs

pid	Process
4044	OpenWith.exe
6084	OpenWith.exe
5092	OpenWith.exe
4124	OpenWith.exe
5708	OpenWith.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: 33	4916	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	4916	AUDIODG.EXE
Token: SeShutdownPrivilege	6120	python-3.12.5-amd64.exe
Token: SeIncreaseQuotaPrivilege	6120	python-3.12.5-amd64.exe
Token: SeSecurityPrivilege	4812	msiexec.exe
Token: SeCreateTokenPrivilege	6120	python-3.12.5-amd64.exe
Token: SeAssignPrimaryTokenPrivilege	6120	python-3.12.5-amd64.exe
Token: SeLockMemoryPrivilege	6120	python-3.12.5-amd64.exe
Token: SeIncreaseQuotaPrivilege	6120	python-3.12.5-amd64.exe
Token: SeMachineAccountPrivilege	6120	python-3.12.5-amd64.exe
Token: SeTcbPrivilege	6120	python-3.12.5-amd64.exe
Token: SeSecurityPrivilege	6120	python-3.12.5-amd64.exe
Token: SeTakeOwnershipPrivilege	6120	python-3.12.5-amd64.exe
Token: SeLoadDriverPrivilege	6120	python-3.12.5-amd64.exe
Token: SeSystemProfilePrivilege	6120	python-3.12.5-amd64.exe
Token: SeSystemtimePrivilege	6120	python-3.12.5-amd64.exe
Token: SeProfSingleProcessPrivilege	6120	python-3.12.5-amd64.exe
Token: SeIncBasePriorityPrivilege	6120	python-3.12.5-amd64.exe
Token: SeCreatePagefilePrivilege	6120	python-3.12.5-amd64.exe
Token: SeCreatePermanentPrivilege	6120	python-3.12.5-amd64.exe
Token: SeBackupPrivilege	6120	python-3.12.5-amd64.exe
Token: SeRestorePrivilege	6120	python-3.12.5-amd64.exe
Token: SeShutdownPrivilege	6120	python-3.12.5-amd64.exe
Token: SeDebugPrivilege	6120	python-3.12.5-amd64.exe
Token: SeAuditPrivilege	6120	python-3.12.5-amd64.exe
Token: SeSystemEnvironmentPrivilege	6120	python-3.12.5-amd64.exe
Token: SeChangeNotifyPrivilege	6120	python-3.12.5-amd64.exe
Token: SeRemoteShutdownPrivilege	6120	python-3.12.5-amd64.exe
Token: SeUndockPrivilege	6120	python-3.12.5-amd64.exe
Token: SeSyncAgentPrivilege	6120	python-3.12.5-amd64.exe
Token: SeEnableDelegationPrivilege	6120	python-3.12.5-amd64.exe
Token: SeManageVolumePrivilege	6120	python-3.12.5-amd64.exe
Token: SeImpersonatePrivilege	6120	python-3.12.5-amd64.exe
Token: SeCreateGlobalPrivilege	6120	python-3.12.5-amd64.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe
Token: SeRestorePrivilege	4812	msiexec.exe
Token: SeTakeOwnershipPrivilege	4812	msiexec.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
2284	ButterflyOnDesktop.exe
2284	ButterflyOnDesktop.exe
5876	Free YouTube Downloader.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe
5948	taskmgr.exe

Suspicious use of SetWindowsHookEx 64 IoCs

pid	Process
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
4044	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
6084	OpenWith.exe
3412	AcroRd32.exe
3412	AcroRd32.exe
3412	AcroRd32.exe
3412	AcroRd32.exe
5092	OpenWith.exe
5092	OpenWith.exe
5092	OpenWith.exe
5092	OpenWith.exe
5092	OpenWith.exe
5092	OpenWith.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3484 wrote to memory of 4868	3484	msedge.exe	86
PID 3484 wrote to memory of 4868	3484	msedge.exe	86
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 3304	3484	msedge.exe	87
PID 3484 wrote to memory of 4684	3484	msedge.exe	88
PID 3484 wrote to memory of 4684	3484	msedge.exe	88
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89
PID 3484 wrote to memory of 1460	3484	msedge.exe	89

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://clickthis.photo/7BFBNH
1⤵
- Enumerates system info in registry
- NTFS ADS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffbb95f46f8,0x7ffbb95f4708,0x7ffbb95f4718
  2⤵
  PID:4868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:2
  2⤵
  PID:3304
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2224 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4684
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2936 /prefetch:8
  2⤵
  PID:1460
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3412 /prefetch:1
  2⤵
  PID:1476
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3432 /prefetch:1
  2⤵
  PID:4584
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5108 /prefetch:1
  2⤵
  PID:2304
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3652 /prefetch:1
  2⤵
  PID:2980
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5428 /prefetch:1
  2⤵
  PID:4036
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3464 /prefetch:1
  2⤵
  PID:3652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5248 /prefetch:1
  2⤵
  PID:1256
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5828 /prefetch:1
  2⤵
  PID:4776
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6164 /prefetch:8
  2⤵
  PID:3260
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6164 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6376 /prefetch:1
  2⤵
  PID:4260
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6408 /prefetch:1
  2⤵
  PID:2396
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3468 /prefetch:1
  2⤵
  PID:5200
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6436 /prefetch:1
  2⤵
  PID:5208
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2900 /prefetch:1
  2⤵
  PID:5896
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4816 /prefetch:1
  2⤵
  PID:2160
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1728 /prefetch:1
  2⤵
  PID:5424
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6408 /prefetch:1
  2⤵
  PID:5344
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5840 /prefetch:1
  2⤵
  PID:5384
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6616 /prefetch:1
  2⤵
  PID:2092
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6664 /prefetch:8
  2⤵
  PID:3244
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6804 /prefetch:1
  2⤵
  PID:5868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5956 /prefetch:1
  2⤵
  PID:5196
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3208 /prefetch:1
  2⤵
  PID:2920
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7060 /prefetch:1
  2⤵
  PID:4944
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7368 /prefetch:1
  2⤵
  PID:5860
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7396 /prefetch:1
  2⤵
  PID:5384
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2004 /prefetch:1
  2⤵
  PID:4932
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4856 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5196
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6712 /prefetch:1
  2⤵
  PID:5136
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2668 /prefetch:1
  2⤵
  PID:1776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1348 /prefetch:1
  2⤵
  PID:5184
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7464 /prefetch:1
  2⤵
  PID:1812
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4852 /prefetch:1
  2⤵
  PID:4040
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4884 /prefetch:1
  2⤵
  PID:4312
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4876 /prefetch:1
  2⤵
  PID:3612
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3200 /prefetch:1
  2⤵
  PID:752
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8136 /prefetch:1
  2⤵
  PID:1828
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7884 /prefetch:1
  2⤵
  PID:1932
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6324 /prefetch:1
  2⤵
  PID:5828
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5616 /prefetch:8
  2⤵
  PID:5388
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6612 /prefetch:8
  2⤵
  PID:4236
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7932 /prefetch:1
  2⤵
  PID:5476
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5524 /prefetch:1
  2⤵
  PID:6024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1296 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2968
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7696 /prefetch:1
  2⤵
  PID:1800
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4088 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4392
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1336 /prefetch:1
  2⤵
  PID:2664
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5624 /prefetch:1
  2⤵
  PID:5412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5600 /prefetch:1
  2⤵
  PID:2524
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7784 /prefetch:8
  2⤵
  PID:5736
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6592 /prefetch:1
  2⤵
  PID:5984
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6896 /prefetch:1
  2⤵
  PID:6036
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7772 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5964 /prefetch:1
  2⤵
  PID:5472
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6516 /prefetch:1
  2⤵
  PID:2968
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4156 /prefetch:1
  2⤵
  PID:5912
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3136 /prefetch:1
  2⤵
  PID:4776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5672 /prefetch:1
  2⤵
  PID:5220
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7048 /prefetch:1
  2⤵
  PID:5940
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5536 /prefetch:1
  2⤵
  PID:2568
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8388 /prefetch:1
  2⤵
  PID:768
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6884 /prefetch:1
  2⤵
  PID:6040
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=8708 /prefetch:8
  2⤵
  PID:2432
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8104 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5992
- C:\Users\Admin\Downloads\python-3.12.5-amd64.exe
  "C:\Users\Admin\Downloads\python-3.12.5-amd64.exe"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:1840
- - C:\Windows\Temp\{D230B717-C578-40EF-B836-B789806056D6}\.cr\python-3.12.5-amd64.exe
    "C:\Windows\Temp\{D230B717-C578-40EF-B836-B789806056D6}\.cr\python-3.12.5-amd64.exe" -burn.clean.room="C:\Users\Admin\Downloads\python-3.12.5-amd64.exe" -burn.filehandle.attached=560 -burn.filehandle.self=568
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    - Adds Run key to start application
    - System Location Discovery: System Language Discovery
    - Modifies registry class
    - Suspicious use of AdjustPrivilegeToken
    PID:6120
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7532 /prefetch:1
  2⤵
  PID:5468
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6352 /prefetch:1
  2⤵
  PID:4876
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9064 /prefetch:1
  2⤵
  PID:896
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7812 /prefetch:1
  2⤵
  PID:5916
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1320 /prefetch:1
  2⤵
  PID:840
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7812 /prefetch:1
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  PID:1516
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8548 /prefetch:1
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  PID:6108
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6896 /prefetch:1
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  PID:5992
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5080 /prefetch:1
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  PID:6004
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8396 /prefetch:1
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  PID:3136
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8840 /prefetch:1
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  PID:6072
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2156,10325107994988602131,18159084710035254550,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3584 /prefetch:8
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  PID:2412

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1004

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:5036

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x32c 0x44c
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:4916

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4512

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:5016

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:4044
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_GDI-and-Bytebeats-main.zip\GDI-and-Bytebeats-main\I_Am_a_potato\I_Am_a_potato.vcxproj.user
  2⤵
  PID:2752

C:\Windows\system32\msiexec.exe
C:\Windows\system32\msiexec.exe /V
1⤵
- Enumerates connected drives
- Drops file in Windows directory
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:4812
- C:\Windows\syswow64\MsiExec.exe
  C:\Windows\syswow64\MsiExec.exe -Embedding AB97CF795D4B725E10DE03048E64CBED
  2⤵
  - Loads dropped DLL
  - System Location Discovery: System Language Discovery
  PID:1144
- - C:\Users\Admin\AppData\Local\Programs\Python\Python312\python.exe
    "C:\Users\Admin\AppData\Local\Programs\Python\Python312\python.exe" -E -s -m ensurepip -U --default-pip
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    PID:5392
  - - C:\Users\Admin\AppData\Local\Programs\Python\Python312\python.exe
      C:\Users\Admin\AppData\Local\Programs\Python\Python312\python.exe -W ignore::DeprecationWarning -c " import runpy import sys sys.path = ['C:\\Users\\Admin\\AppData\\Local\\Temp\\tmpq5ybfm8b\\pip-24.2-py3-none-any.whl'] + sys.path sys.argv[1:] = ['install', '--no-cache-dir', '--no-index', '--find-links', 'C:\\Users\\Admin\\AppData\\Local\\Temp\\tmpq5ybfm8b', '--upgrade', 'pip'] runpy.run_module(\"pip\", run_name=\"__main__\", alter_sys=True) "
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      PID:212

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:6084
- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
  "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Temp1_GDI-and-Bytebeats-main.zip\GDI-and-Bytebeats-main\I_Am_a_potato\I_Am_a_potato.sln"
  2⤵
  - System Location Discovery: System Language Discovery
  - Checks processor information in registry
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:3412
- - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
    "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
    3⤵
    - System Location Discovery: System Language Discovery
    PID:5944
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=CE42AF13897F483E1AF60B7C020A477E --mojo-platform-channel-handle=1760 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:5744
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=44280C9AC6D3B6EAA7E4C07089AF893D --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=44280C9AC6D3B6EAA7E4C07089AF893D --renderer-client-id=2 --mojo-platform-channel-handle=1752 --allow-no-sandbox-job /prefetch:1
      4⤵
      System Location Discovery: System Language Discovery
      PID:6140
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=4A89D3D177DBB9234120113CA12C1233 --mojo-platform-channel-handle=2292 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:2788
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=2D4193C26B67F9444AD569706CEEA7A6 --mojo-platform-channel-handle=2500 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:3284
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=35D865D95C5D2705559B699DF5C5D600 --mojo-platform-channel-handle=2300 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:5556

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:5236

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:5092
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_GDI-and-Bytebeats-main.zip\GDI-and-Bytebeats-main\I_Am_a_potato\I_Am_a_potato.vcxproj.user
  2⤵
  PID:5248

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
PID:4124
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_GDI-and-Bytebeats-main.zip\GDI-and-Bytebeats-main\I_Am_a_potato\README.md
  2⤵
  PID:888

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
PID:3816
- C:\Program Files\Windows NT\Accessories\WORDPAD.EXE
  "C:\Program Files\Windows NT\Accessories\WORDPAD.EXE" "C:\Users\Admin\AppData\Local\Temp\Temp1_GDI-and-Bytebeats-main.zip\GDI-and-Bytebeats-main\I_Am_a_potato\Main.cpp"
  2⤵
  PID:2752

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k PrintWorkflow -s PrintWorkflowUserSvc
1⤵
PID:3436

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Suspicious behavior: GetForegroundWindowSpam
PID:5708
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_GDI-and-Bytebeats-main.zip\GDI-and-Bytebeats-main\I_Am_a_potato\I_Am_a_potato.sln
  2⤵
  PID:1792

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
PID:5576
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_GDI-and-Bytebeats-main.zip\GDI-and-Bytebeats-main\I_Am_a_potato\I_Am_a_potato.sln
  2⤵
  PID:2308

C:\Users\Admin\AppData\Local\Temp\Temp1_The-MALWARE-Repo-master.zip\The-MALWARE-Repo-master\Virus\Mabezat\Mabezat.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_The-MALWARE-Repo-master.zip\The-MALWARE-Repo-master\Virus\Mabezat\Mabezat.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:5592

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Mabezat\Mabezat.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Mabezat\Mabezat.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:5812

C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
"C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Melissa.doc" /o ""
1⤵
- Checks processor information in registry
- Enumerates system info in registry
- Suspicious behavior: AddClipboardFormatListener
PID:4396

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Floxif\Floxif.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Floxif\Floxif.exe"
1⤵
- Loads dropped DLL
- System Location Discovery: System Language Discovery
PID:4668
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4668 -s 436
  2⤵
  - Program crash
  PID:1480
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4668 -s 468
  2⤵
  - Program crash
  PID:1900

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4668 -ip 4668
1⤵
PID:3676

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 524 -p 4668 -ip 4668
1⤵
PID:1672

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Gnil\Gnil.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Gnil\Gnil.exe"
1⤵
- Drops file in Drivers directory
- System Location Discovery: System Language Discovery
- Suspicious behavior: EnumeratesProcesses
PID:412
- C:\Windows\SysWOW64\drivers\spoclsv.exe
  C:\Windows\system32\drivers\spoclsv.exe
  2⤵
  - Executes dropped EXE
  - Suspicious behavior: EnumeratesProcesses
  PID:4472

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Xpaj\xpaj.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\Xpaj\xpaj.exe"
1⤵
- Enumerates connected drives
- Writes to the Master Boot Record (MBR)
- Drops file in Program Files directory
- System Location Discovery: System Language Discovery
PID:4948

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\WinNuke.98.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Virus\WinNuke.98.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:4656

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Spyware\butterflyondesktop.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Spyware\butterflyondesktop.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:2992
- C:\Users\Admin\AppData\Local\Temp\is-A8LK4.tmp\butterflyondesktop.tmp
  "C:\Users\Admin\AppData\Local\Temp\is-A8LK4.tmp\butterflyondesktop.tmp" /SL5="$702F4,2719719,54272,C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Spyware\butterflyondesktop.exe"
  2⤵
  - Executes dropped EXE
  - Adds Run key to start application
  - System Location Discovery: System Language Discovery
  PID:5728
- - C:\Program Files (x86)\Butterfly on Desktop\ButterflyOnDesktop.exe
    "C:\Program Files (x86)\Butterfly on Desktop\ButterflyOnDesktop.exe"
    3⤵
    - Executes dropped EXE
    - Adds Run key to start application
    - System Location Discovery: System Language Discovery
    - Suspicious use of SendNotifyMessage
    PID:2284
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://freedesktopsoft.com/butterflyondesktoplike.html
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    PID:5380
  - - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xd8,0x128,0x7ffbb95f46f8,0x7ffbb95f4708,0x7ffbb95f4718
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      PID:3928

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\FreeYoutubeDownloader.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\FreeYoutubeDownloader.exe"
1⤵
- Adds Run key to start application
- Drops file in Windows directory
- System Location Discovery: System Language Discovery
PID:2920
- C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Free YouTube Downloader.exe
  "C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Free YouTube Downloader.exe"
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Suspicious use of SendNotifyMessage
  PID:5876
- - C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Box.exe
    "C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Box.exe"
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:1440

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\FreeYoutubeDownloader.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\FreeYoutubeDownloader.exe"
1⤵
- Drops file in Windows directory
- System Location Discovery: System Language Discovery
PID:5864

C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
1⤵
- Checks SCSI registry key(s)
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SendNotifyMessage
PID:5948

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\Zika.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\Zika.exe"
1⤵
- Drops file in Windows directory
- System Location Discovery: System Language Discovery
PID:5728
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\7-Zip\7z.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:2756
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5884
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\7-Zip\7zFM.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:2200
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:6136
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\7-Zip\7zG.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:1440
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:3228
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\7-Zip\Uninstall.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5484
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:2788
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -addoverwrite C:\Program Files\7-Zip\Uninstall.exe", "C:\Program Files\7-Zip\Uninstall.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:1808
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\Common Files\microsoft shared\ClickToRun\appvcleaner.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5500
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:3284
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:3392
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5380
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\Common Files\microsoft shared\ClickToRun\InspectorOfficeGadget.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5600
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:4064
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\Common Files\microsoft shared\ClickToRun\IntegratedOffice.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5636
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5708
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\Common Files\microsoft shared\ClickToRun\MavInject32.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5424
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:2308
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\svchost.exe" -extract C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.dll.sys.exe, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, icongroup,,
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:3308
- C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe
  "C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.exe" -compile C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.rc, C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5696

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\TaskILL.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Trojan\TaskILL.exe"
1⤵
PID:4592
- C:\Windows\SYSTEM32\mountvol.exe
  mountvol c:\ /d
  2⤵
  PID:4372

Network

DNS

clickthis.photo

msedge.exe

Remote address:

8.8.8.8:53

Request

clickthis.photo

IN A

Response

clickthis.photo

IN A

52.173.151.229
GET

https://clickthis.photo/7BFBNH

msedge.exe

Remote address:

52.173.151.229:443

Request

GET /7BFBNH HTTP/1.1
Host: clickthis.photo
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Content-Length: 0
Content-Type: text/html; charset=utf-8
Date: Tue, 20 Aug 2024 09:05:32 GMT
Server: Apache
Location: https://grabify.world/7BFBNH
Status: 301 Moved Permanently
cf-cache-status: DYNAMIC
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
cf-ray: 56137e603e72eeba
DNS

8.8.8.8.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.8.8.8.in-addr.arpa

IN PTR

Response

8.8.8.8.in-addr.arpa

IN PTR

dnsgoogle
DNS

196.249.167.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.249.167.52.in-addr.arpa

IN PTR

Response
DNS

134.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

134.32.126.40.in-addr.arpa

IN PTR

Response
DNS

229.151.173.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

229.151.173.52.in-addr.arpa

IN PTR

Response
DNS

172.214.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.214.232.199.in-addr.arpa

IN PTR

Response
DNS

grabify.world

msedge.exe

Remote address:

8.8.8.8:53

Request

grabify.world

IN A

Response

grabify.world

IN A

104.21.15.56

grabify.world

IN A

172.67.161.186
GET

https://grabify.world/7BFBNH

msedge.exe

Remote address:

104.21.15.56:443

Request

GET /7BFBNH HTTP/2.0
host: grabify.world
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 20 Aug 2024 09:05:32 GMT
content-type: text/html
content-length: 143
location: https://grabify.link/7BFBNH
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BFfIAdHxu1qxvRlSxaaHHnZfyZ7ZKvIFCOKD5k90Ys%2FG%2ByYXlMqK%2FG4Us0j35b0e6a9Qt0jMklK95QQ0J0N%2BhvQYCBDEGMGVMcV4ODXCNF5lxRxc04cF2RU2w3P2K15i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b6138e25a98730c-LHR
alt-svc: h3=":443"; ma=86400
DNS

grabify.link

msedge.exe

Remote address:

8.8.8.8:53

Request

grabify.link

IN A

Response

grabify.link

IN A

172.67.68.246

grabify.link

IN A

104.26.8.202

grabify.link

IN A

104.26.9.202
GET

https://grabify.link/7BFBNH

msedge.exe

Remote address:

172.67.68.246:443

Request

GET /7BFBNH HTTP/2.0
host: grabify.link
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:05:33 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
x-ratelimit-limit: 15
x-ratelimit-remaining: 14
set-cookie: XSRF-TOKEN=eyJpdiI6Ijk0N0dMTHRMWFJyWXlRK1g2UzlOdXc9PSIsInZhbHVlIjoiRDRCZFZNaG1xamY1SlZJdEp5MjhXV2NGMXRaZWJJS25oLzF2VGJ3cFJPZUZ1MjkzVFdXWks5eWkxU2lieEFteDJxelNsZFAzbzl6MVhXUmtIbG84TFRvanZ4N2t1WGJxSUJpcEZ5ZEZqSG9oYmF4QU0veXU4ZWFHeUJGWUdsRloiLCJtYWMiOiJiYzg2NGE0MTMxNGQ0MjQ2OGZkNDVmMDc4NDJhMWJhZGRiNGUwMWY0M2Y4MDJlZDcxMWU4ZjY4ZTBlMDFkNmNkIiwidGFnIjoiIn0%3D; expires=Tue, 20 Aug 2024 14:05:33 GMT; Max-Age=18000; path=/; secure
set-cookie: g_session=eyJpdiI6ImxOcmFIMzJVcW9VN3Vsak9OKzJsVFE9PSIsInZhbHVlIjoidk0vdzdZY05iNitwNWJEeW5HeVg3SjdLMnlyU2U0RDRRTnloUjEzcUtLNHAyOXhIbGd4NzdtWnV6OU51YldUTmRhLy85dTF4WFVBTXg5amxyTVlYL1VnSnJiM0tRQ2hXK1ZEeHppenNWY1RQM2hJVFJBN1h0TEJtdGZGQUdPcDYiLCJtYWMiOiI4NzI2MTc3ODdjZDM0YTI5YzU4MWFhM2VhYTY2ZWY1ZTY4N2Y0YzVkN2U0ZjI4ZjczMmFhZWE4MGY1MWFhNGJmIiwidGFnIjoiIn0%3D; expires=Tue, 20 Aug 2024 14:05:33 GMT; Max-Age=18000; path=/; secure; httponly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j9mtPKY5fc1ktb6TNs1AhADarmXU78ixyMyD1WmemAq18dOtfc83dmZpDwbwtHCfqp4FlRbGkl6pai%2FkGWpZcJfI%2FF9pH3xHY%2BcOt1ykC15%2Br4eRV6hPdDtMaCmAfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b6138e3ba45b466-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://grabify.link/js/ads.js

msedge.exe

Remote address:

172.67.68.246:443

Request

GET /js/ads.js HTTP/2.0
host: grabify.link
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: XSRF-TOKEN=eyJpdiI6Ijk0N0dMTHRMWFJyWXlRK1g2UzlOdXc9PSIsInZhbHVlIjoiRDRCZFZNaG1xamY1SlZJdEp5MjhXV2NGMXRaZWJJS25oLzF2VGJ3cFJPZUZ1MjkzVFdXWks5eWkxU2lieEFteDJxelNsZFAzbzl6MVhXUmtIbG84TFRvanZ4N2t1WGJxSUJpcEZ5ZEZqSG9oYmF4QU0veXU4ZWFHeUJGWUdsRloiLCJtYWMiOiJiYzg2NGE0MTMxNGQ0MjQ2OGZkNDVmMDc4NDJhMWJhZGRiNGUwMWY0M2Y4MDJlZDcxMWU4ZjY4ZTBlMDFkNmNkIiwidGFnIjoiIn0%3D
cookie: g_session=eyJpdiI6ImxOcmFIMzJVcW9VN3Vsak9OKzJsVFE9PSIsInZhbHVlIjoidk0vdzdZY05iNitwNWJEeW5HeVg3SjdLMnlyU2U0RDRRTnloUjEzcUtLNHAyOXhIbGd4NzdtWnV6OU51YldUTmRhLy85dTF4WFVBTXg5amxyTVlYL1VnSnJiM0tRQ2hXK1ZEeHppenNWY1RQM2hJVFJBN1h0TEJtdGZGQUdPcDYiLCJtYWMiOiI4NzI2MTc3ODdjZDM0YTI5YzU4MWFhM2VhYTY2ZWY1ZTY4N2Y0YzVkN2U0ZjI4ZjczMmFhZWE4MGY1MWFhNGJmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:05:33 GMT
content-type: application/javascript
content-length: 19
cf-bgj: minify
cf-polished: origSize=22
etag: "16-60f850cd8071e"
last-modified: Mon, 22 Jan 2024 08:59:40 GMT
cf-cache-status: HIT
age: 6911
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aICgMB2PCXj9y95%2F%2FVFWvBZE%2FguNTmz823Wa95ae4rFz8h4Y%2BKFvuDkvSbE8DQkHB7xeqx5Pv3QwMl8ILgzSiNbBk3DNeJsFXlG7BUHhhj7DYBlDUsfyHLPuPare0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b6138ea1970b466-LHR
alt-svc: h3=":443"; ma=86400
GET

https://grabify.link/js/jquery-2.5.1.min.js?id=becdb2801a6652a4af84f6a2d3f8a4f2

msedge.exe

Remote address:

172.67.68.246:443

Request

GET /js/jquery-2.5.1.min.js?id=becdb2801a6652a4af84f6a2d3f8a4f2 HTTP/2.0
host: grabify.link
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: XSRF-TOKEN=eyJpdiI6Ijk0N0dMTHRMWFJyWXlRK1g2UzlOdXc9PSIsInZhbHVlIjoiRDRCZFZNaG1xamY1SlZJdEp5MjhXV2NGMXRaZWJJS25oLzF2VGJ3cFJPZUZ1MjkzVFdXWks5eWkxU2lieEFteDJxelNsZFAzbzl6MVhXUmtIbG84TFRvanZ4N2t1WGJxSUJpcEZ5ZEZqSG9oYmF4QU0veXU4ZWFHeUJGWUdsRloiLCJtYWMiOiJiYzg2NGE0MTMxNGQ0MjQ2OGZkNDVmMDc4NDJhMWJhZGRiNGUwMWY0M2Y4MDJlZDcxMWU4ZjY4ZTBlMDFkNmNkIiwidGFnIjoiIn0%3D
cookie: g_session=eyJpdiI6ImxOcmFIMzJVcW9VN3Vsak9OKzJsVFE9PSIsInZhbHVlIjoidk0vdzdZY05iNitwNWJEeW5HeVg3SjdLMnlyU2U0RDRRTnloUjEzcUtLNHAyOXhIbGd4NzdtWnV6OU51YldUTmRhLy85dTF4WFVBTXg5amxyTVlYL1VnSnJiM0tRQ2hXK1ZEeHppenNWY1RQM2hJVFJBN1h0TEJtdGZGQUdPcDYiLCJtYWMiOiI4NzI2MTc3ODdjZDM0YTI5YzU4MWFhM2VhYTY2ZWY1ZTY4N2Y0YzVkN2U0ZjI4ZjczMmFhZWE4MGY1MWFhNGJmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:05:34 GMT
content-type: application/javascript
last-modified: Sat, 13 Apr 2024 05:23:14 GMT
etag: "2ab19-615f395c2cfcc-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c%2BGkUyyQZmLbg3jBgyb%2BIydXjcDsuss3FRd0%2FNF%2F65CjKWW0pArhHxmwOYqpW4SJxAS2Rj12bkBOQz1Aaxt5pCZ96G4uin7cbnkryzTnuWE0z8RK56tOBVrLRsqzzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b6138ea1971b466-LHR
alt-svc: h3=":443"; ma=86400
GET

https://grabify.link/js/jquery-2.5.2.min.js

msedge.exe

Remote address:

172.67.68.246:443

Request

GET /js/jquery-2.5.2.min.js HTTP/2.0
host: grabify.link
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: XSRF-TOKEN=eyJpdiI6Ijk0N0dMTHRMWFJyWXlRK1g2UzlOdXc9PSIsInZhbHVlIjoiRDRCZFZNaG1xamY1SlZJdEp5MjhXV2NGMXRaZWJJS25oLzF2VGJ3cFJPZUZ1MjkzVFdXWks5eWkxU2lieEFteDJxelNsZFAzbzl6MVhXUmtIbG84TFRvanZ4N2t1WGJxSUJpcEZ5ZEZqSG9oYmF4QU0veXU4ZWFHeUJGWUdsRloiLCJtYWMiOiJiYzg2NGE0MTMxNGQ0MjQ2OGZkNDVmMDc4NDJhMWJhZGRiNGUwMWY0M2Y4MDJlZDcxMWU4ZjY4ZTBlMDFkNmNkIiwidGFnIjoiIn0%3D
cookie: g_session=eyJpdiI6ImxOcmFIMzJVcW9VN3Vsak9OKzJsVFE9PSIsInZhbHVlIjoidk0vdzdZY05iNitwNWJEeW5HeVg3SjdLMnlyU2U0RDRRTnloUjEzcUtLNHAyOXhIbGd4NzdtWnV6OU51YldUTmRhLy85dTF4WFVBTXg5amxyTVlYL1VnSnJiM0tRQ2hXK1ZEeHppenNWY1RQM2hJVFJBN1h0TEJtdGZGQUdPcDYiLCJtYWMiOiI4NzI2MTc3ODdjZDM0YTI5YzU4MWFhM2VhYTY2ZWY1ZTY4N2Y0YzVkN2U0ZjI4ZjczMmFhZWE4MGY1MWFhNGJmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:05:34 GMT
content-type: application/javascript
content-length: 4453
last-modified: Sat, 13 Apr 2024 05:23:14 GMT
etag: "31c3-615f395cd0130-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wjFN8WCsyPZqY9JA8LJsaBQFXIfZ8bxax5P580hiGP2JsfuYwPpmFrlDhhfLS6%2BNqo4bdpKXGmIIgy3rPWqlznvM6iMT7%2Bcw8lNhv2fKdeDsSemzG1dFWy%2F%2FpFe2Aw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b6138efbfecb466-LHR
alt-svc: h3=":443"; ma=86400
POST

https://grabify.link/api/js

msedge.exe

Remote address:

172.67.68.246:443

Request

POST /api/js HTTP/2.0
host: grabify.link
content-length: 3691
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-csrf-token: Hpjz323ChCZ6lZrVcTp8Fr9gnb73tqNA97kJqVk7
sec-ch-ua-mobile: ?0
user-agents: SHBqejMyM0NoQ1o2bFpyVmNUcDhGcjlnbmI3M3RxTkE5N2tKcVZrNw==
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://grabify.link
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: XSRF-TOKEN=eyJpdiI6Ijk0N0dMTHRMWFJyWXlRK1g2UzlOdXc9PSIsInZhbHVlIjoiRDRCZFZNaG1xamY1SlZJdEp5MjhXV2NGMXRaZWJJS25oLzF2VGJ3cFJPZUZ1MjkzVFdXWks5eWkxU2lieEFteDJxelNsZFAzbzl6MVhXUmtIbG84TFRvanZ4N2t1WGJxSUJpcEZ5ZEZqSG9oYmF4QU0veXU4ZWFHeUJGWUdsRloiLCJtYWMiOiJiYzg2NGE0MTMxNGQ0MjQ2OGZkNDVmMDc4NDJhMWJhZGRiNGUwMWY0M2Y4MDJlZDcxMWU4ZjY4ZTBlMDFkNmNkIiwidGFnIjoiIn0%3D
cookie: g_session=eyJpdiI6ImxOcmFIMzJVcW9VN3Vsak9OKzJsVFE9PSIsInZhbHVlIjoidk0vdzdZY05iNitwNWJEeW5HeVg3SjdLMnlyU2U0RDRRTnloUjEzcUtLNHAyOXhIbGd4NzdtWnV6OU51YldUTmRhLy85dTF4WFVBTXg5amxyTVlYL1VnSnJiM0tRQ2hXK1ZEeHppenNWY1RQM2hJVFJBN1h0TEJtdGZGQUdPcDYiLCJtYWMiOiI4NzI2MTc3ODdjZDM0YTI5YzU4MWFhM2VhYTY2ZWY1ZTY4N2Y0YzVkN2U0ZjI4ZjczMmFhZWE4MGY1MWFhNGJmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:05:35 GMT
access-control-allow-origin: https://grabify.link
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 8b6138f6b914b466-LHR
x-frame-options: DENY
x-content-type-options: nosniff
POST

https://grabify.link/cdn-cgi/rum?

msedge.exe

Remote address:

172.67.68.246:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: grabify.link
content-length: 1140
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://grabify.link
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: XSRF-TOKEN=eyJpdiI6Ijk0N0dMTHRMWFJyWXlRK1g2UzlOdXc9PSIsInZhbHVlIjoiRDRCZFZNaG1xamY1SlZJdEp5MjhXV2NGMXRaZWJJS25oLzF2VGJ3cFJPZUZ1MjkzVFdXWks5eWkxU2lieEFteDJxelNsZFAzbzl6MVhXUmtIbG84TFRvanZ4N2t1WGJxSUJpcEZ5ZEZqSG9oYmF4QU0veXU4ZWFHeUJGWUdsRloiLCJtYWMiOiJiYzg2NGE0MTMxNGQ0MjQ2OGZkNDVmMDc4NDJhMWJhZGRiNGUwMWY0M2Y4MDJlZDcxMWU4ZjY4ZTBlMDFkNmNkIiwidGFnIjoiIn0%3D
cookie: g_session=eyJpdiI6ImxOcmFIMzJVcW9VN3Vsak9OKzJsVFE9PSIsInZhbHVlIjoidk0vdzdZY05iNitwNWJEeW5HeVg3SjdLMnlyU2U0RDRRTnloUjEzcUtLNHAyOXhIbGd4NzdtWnV6OU51YldUTmRhLy85dTF4WFVBTXg5amxyTVlYL1VnSnJiM0tRQ2hXK1ZEeHppenNWY1RQM2hJVFJBN1h0TEJtdGZGQUdPcDYiLCJtYWMiOiI4NzI2MTc3ODdjZDM0YTI5YzU4MWFhM2VhYTY2ZWY1ZTY4N2Y0YzVkN2U0ZjI4ZjczMmFhZWE4MGY1MWFhNGJmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:05:35 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 02 Mar 2023 08:48:42 GMT
etag: W/"576e-5f5e6e55d2ad7"
cf-cache-status: HIT
age: 711
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sTIGS5K0elweyXq15YVp9MmL7vNdcA3lfbKa2w43A2KXLUdRIhy%2BsLGO6EpcRHuqkzD7oux%2Bmrs9FKtmGfaxre7%2F4F52GT5%2BTXkvDaFCgcK0G8gPO3%2B0miwne18C4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b6138f6b91bb466-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://grabify.link/favicon.ico

msedge.exe

Remote address:

172.67.68.246:443

Request

GET /favicon.ico HTTP/2.0
host: grabify.link
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: XSRF-TOKEN=eyJpdiI6Ijk0N0dMTHRMWFJyWXlRK1g2UzlOdXc9PSIsInZhbHVlIjoiRDRCZFZNaG1xamY1SlZJdEp5MjhXV2NGMXRaZWJJS25oLzF2VGJ3cFJPZUZ1MjkzVFdXWks5eWkxU2lieEFteDJxelNsZFAzbzl6MVhXUmtIbG84TFRvanZ4N2t1WGJxSUJpcEZ5ZEZqSG9oYmF4QU0veXU4ZWFHeUJGWUdsRloiLCJtYWMiOiJiYzg2NGE0MTMxNGQ0MjQ2OGZkNDVmMDc4NDJhMWJhZGRiNGUwMWY0M2Y4MDJlZDcxMWU4ZjY4ZTBlMDFkNmNkIiwidGFnIjoiIn0%3D
cookie: g_session=eyJpdiI6ImxOcmFIMzJVcW9VN3Vsak9OKzJsVFE9PSIsInZhbHVlIjoidk0vdzdZY05iNitwNWJEeW5HeVg3SjdLMnlyU2U0RDRRTnloUjEzcUtLNHAyOXhIbGd4NzdtWnV6OU51YldUTmRhLy85dTF4WFVBTXg5amxyTVlYL1VnSnJiM0tRQ2hXK1ZEeHppenNWY1RQM2hJVFJBN1h0TEJtdGZGQUdPcDYiLCJtYWMiOiI4NzI2MTc3ODdjZDM0YTI5YzU4MWFhM2VhYTY2ZWY1ZTY4N2Y0YzVkN2U0ZjI4ZjczMmFhZWE4MGY1MWFhNGJmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:05:36 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 10
x-ratelimit-remaining: 8
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IjF6WmUzYXgveWF1QlN6U3FENlJUZ2c9PSIsInZhbHVlIjoiSnB6bDZwS3h1MDVzNkNYMGh6ZjJ3MkxiRlFyUWJxU3NxZ1FDWWxhUmVmT01KRklnY0dqUWhRellPYUd2aXZBS25rUk1LeFgwSzF0YjJPZTFQelVreVUydTZDdmxHb3d1ek10SG85V0UwTGdHNmkwSDJPTWdiUlFISXJxR0k0S1giLCJtYWMiOiI1NTBmMGI3ZWEyMDRiY2FkYTQ1ZDE1YTkyMWEzNmEwMzRlOGNhNzM2OTJlMDE3ZTBhODMxY2RkZWI1ZTI1ODQ3IiwidGFnIjoiIn0%3D; expires=Tue, 20 Aug 2024 14:05:35 GMT; Max-Age=18000; path=/; secure
set-cookie: g_session=eyJpdiI6IlhmMnZKb3pTeHArblE3aFk0OGFjQkE9PSIsInZhbHVlIjoiVHAyRk1OaGxNV25saU5HUmlSYlpQTkJFZ3V2U1ZLck1oWWR2MW54eHhueE1FYzJSYzlXK2pQRlltTjgvcHZMeG9UZDh0K3NKa281Rm53aVRIcmgxV1Uyam4rV2doT3hhYVlNSmVxVkUvbGMwNmhqOEZVbWRXcVphNGFtVlRubkkiLCJtYWMiOiI1MThiMjViZDgzNjU4ZjZjNDU3OTc4MmU3YjdmMGJiNjJkM2NjZDcxYzY3ZWE0MzA3MTM5ODhlMDg5Y2Q1NmIyIiwidGFnIjoiIn0%3D; expires=Tue, 20 Aug 2024 14:05:35 GMT; Max-Age=18000; path=/; secure; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zp0G9YtKmg7YflSjzOAUI69C5dn0Pl6oUuG%2Bktabho2e%2FmAfWD59r4usqTfmd0jnzhMEM983V60c6%2FpIoLAxpCmmWQ6mB66H6xLiouSqjKUURuBRlh3%2Bzdtsc9LA%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b6138f6b912b466-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST

https://grabify.link/cdn-cgi/rum?

msedge.exe

Remote address:

172.67.68.246:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: grabify.link
content-length: 652
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://grabify.link
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: XSRF-TOKEN=eyJpdiI6IjF6WmUzYXgveWF1QlN6U3FENlJUZ2c9PSIsInZhbHVlIjoiSnB6bDZwS3h1MDVzNkNYMGh6ZjJ3MkxiRlFyUWJxU3NxZ1FDWWxhUmVmT01KRklnY0dqUWhRellPYUd2aXZBS25rUk1LeFgwSzF0YjJPZTFQelVreVUydTZDdmxHb3d1ek10SG85V0UwTGdHNmkwSDJPTWdiUlFISXJxR0k0S1giLCJtYWMiOiI1NTBmMGI3ZWEyMDRiY2FkYTQ1ZDE1YTkyMWEzNmEwMzRlOGNhNzM2OTJlMDE3ZTBhODMxY2RkZWI1ZTI1ODQ3IiwidGFnIjoiIn0%3D
cookie: g_session=eyJpdiI6IlhmMnZKb3pTeHArblE3aFk0OGFjQkE9PSIsInZhbHVlIjoiVHAyRk1OaGxNV25saU5HUmlSYlpQTkJFZ3V2U1ZLck1oWWR2MW54eHhueE1FYzJSYzlXK2pQRlltTjgvcHZMeG9UZDh0K3NKa281Rm53aVRIcmgxV1Uyam4rV2doT3hhYVlNSmVxVkUvbGMwNmhqOEZVbWRXcVphNGFtVlRubkkiLCJtYWMiOiI1MThiMjViZDgzNjU4ZjZjNDU3OTc4MmU3YjdmMGJiNjJkM2NjZDcxYzY3ZWE0MzA3MTM5ODhlMDg5Y2Q1NmIyIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:05:37 GMT
access-control-allow-origin: https://grabify.link
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 8b6139027e2db466-LHR
x-frame-options: DENY
x-content-type-options: nosniff
DNS

56.15.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

56.15.21.104.in-addr.arpa

IN PTR

Response
DNS

static.cloudflareinsights.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.cloudflareinsights.com

IN A

Response

static.cloudflareinsights.com

IN A

104.16.79.73

static.cloudflareinsights.com

IN A

104.16.80.73
GET

https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

msedge.exe

Remote address:

104.16.79.73:443

Request

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/2.0
host: static.cloudflareinsights.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://grabify.link
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:05:34 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b6138eb79c963e2-LHR
content-encoding: gzip
DNS

246.68.67.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

246.68.67.172.in-addr.arpa

IN PTR

Response
DNS

57.169.31.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

57.169.31.20.in-addr.arpa

IN PTR

Response
DNS

73.79.16.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

73.79.16.104.in-addr.arpa

IN PTR

Response
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

142.250.179.98
GET

https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1065028372/?random=1724144739036&cv=11&fst=1724144739036&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dgtag.config&rfmt=3&fmt=4

msedge.exe

Remote address:

142.250.179.98:443

Request

GET /pagead/viewthroughconversion/1065028372/?random=1724144739036&cv=11&fst=1724144739036&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/2.0
host: googleads.g.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1065028372/?random=1724144739051&cv=11&fst=1724144739051&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dpage_view%3Bguid%3D6f08dc9c1910acf39cc05acaffff2dfa%3Becomm_totalvalue%3D1%3Becomm_pagetype%3Dhomepage&rfmt=3&fmt=4

msedge.exe

Remote address:

142.250.179.98:443

Request

GET /pagead/viewthroughconversion/1065028372/?random=1724144739051&cv=11&fst=1724144739051&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dpage_view%3Bguid%3D6f08dc9c1910acf39cc05acaffff2dfa%3Becomm_totalvalue%3D1%3Becomm_pagetype%3Dhomepage&rfmt=3&fmt=4 HTTP/2.0
host: googleads.g.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

226.75.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

226.75.250.142.in-addr.arpa

IN PTR

Response

226.75.250.142.in-addr.arpa

IN PTR

par10s41-in-f21e100net
DNS

ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

ebay.com.au

IN A

Response

ebay.com.au

IN A

2.21.67.41

ebay.com.au

IN A

2.21.67.51
GET

http://ebay.com.au/

msedge.exe

Remote address:

2.21.67.41:80

Request

GET / HTTP/1.1
Host: ebay.com.au
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: AkamaiGHost
Content-Length: 0
Location: https://ebay.com.au/
Expires: Tue, 20 Aug 2024 09:05:36 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 20 Aug 2024 09:05:36 GMT
Connection: keep-alive
DNS

msedge.exe

Remote address:

2.21.67.41:80

Response

HTTP/1.0 408 Request Time-out

Server: AkamaiGHost
Mime-Version: 1.0
Date: Tue, 20 Aug 2024 09:06:11 GMT
Content-Type: text/html
Content-Length: 314
Expires: Tue, 20 Aug 2024 09:06:11 GMT
GET

https://ebay.com.au/

msedge.exe

Remote address:

2.21.67.41:443

Request

GET / HTTP/2.0
host: ebay.com.au
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 301

location: https://www.ebay.com.au/
x-ebay-pop-id: SLBRNOAZ03
server: ebay-proxy-server
content-length: 0
expires: Tue, 20 Aug 2024 09:05:36 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:05:36 GMT
strict-transport-security: max-age=31536000
DNS

98.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

98.179.250.142.in-addr.arpa

IN PTR

Response

98.179.250.142.in-addr.arpa

IN PTR

par21s20-in-f21e100net
DNS

41.67.21.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

41.67.21.2.in-addr.arpa

IN PTR

Response

41.67.21.2.in-addr.arpa

IN PTR

a2-21-67-41deploystaticakamaitechnologiescom
DNS

233.38.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

233.38.18.104.in-addr.arpa

IN PTR

Response
DNS

www.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

www.ebay.com.au

IN A

Response

www.ebay.com.au

IN CNAME

ipv4.slot11847.ebay.com.edgekey.net

ipv4.slot11847.ebay.com.edgekey.net

IN CNAME

e11847.a.akamaiedge.net

e11847.a.akamaiedge.net

IN A

184.26.133.191
GET

https://www.ebay.com.au/

msedge.exe

Remote address:

184.26.133.191:443

Request

GET / HTTP/2.0
host: www.ebay.com.au
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-type: text/html; charset=utf-8
rlogid: t6u%60tsodhct%60d13%3F%3Ckuvpbqqjfmaqba36*7c0m%60(rbpv6762-1916f08dc88-0x1202
content-encoding: gzip
x-envoy-upstream-service-time: 212
server: ebay-proxy-server
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:05:37 GMT
vary: Accept-Encoding
set-cookie: dp1=bbl/GB6a86c361^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:37 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+FFQzRSMEFOAMoAIGqGw2E2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNpMdk4GMB6v7m0J5BTwscYDKm3yLqu; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:37 GMT; HttpOnly; Secure
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=; Domain=.ebay.com.au; Path=/; Expires=Tue, 20 Aug 2024 11:05:37 GMT; Max-Age=7200
GET

https://www.ebay.com.au/sch/ajax/autocomplete

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /sch/ajax/autocomplete HTTP/2.0
host: www.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
accept: */*
sec-ch-ua-platform-version: "10.0"
x-requested-with: XMLHttpRequest
sec-ch-ua-model:
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: dp1=bbl/GB6a86c361^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+FFQzRSMEFOAMoAIGqGw2E2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNpMdk4GMB6v7m0J5BTwscYDKm3yLqu
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: ebay=%5Esbf%3D%23100000%5E

Response

HTTP/2.0 200

x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-type: application/json; charset=utf-8
etag: W/"5b-76jW0X0mToPU9wqpWwXK1zaLl6o"
rlogid: t6pwvit%60d5%60jhs9%3Fuuskqba7ehmq%2Ba7g%3F%3Fe330.1t0pw-1916f08e0d1-0x205
x-envoy-upstream-service-time: 154
x-ebay-mesh-server-pod-ip: 10.98.78.218
x-ebay-mesh-server-duration: 16
x-ebay-mesh-server-start: 2024-08-20T09:05:38.510Z
x-ebay-mesh-server-response-flag: -
server: ebay-proxy-server
x-ebay-mesh-gw-name: istioingressgateway-production-rnoaz06-02
x-ebay-mesh-gw-pod-name: istio-ingressgateway-02-7799fd6f78-xv9ck
x-ebay-mesh-gw-pod-ip: 10.81.246.79
x-ebay-mesh-gw-upstream-duration: 22
x-ebay-mesh-gw-duration: 22
x-ebay-mesh-gw-start: 2024-08-20T09:05:38.505Z
x-ebay-mesh-gw-response-flag: -
content-encoding: gzip
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:05:38 GMT
content-length: 112
vary: Accept-Encoding
set-cookie: dp1=bbl/GB6a86c362^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:38 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMYBvF+jDsgZFQ00ahf5c9tgpUFma; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:38 GMT; HttpOnly; Secure
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==; HttpOnly; Secure; Path=/; Domain=.ebay.com.au; Expires=Sun, 16 Feb 2025 09:05:38 UTC
set-cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12; Path=/; Domain=.ebay.com.au; Expires=Sun, 16 Feb 2025 09:05:38 UTC
set-cookie: __uzmb=1724144738; Path=/; Domain=.ebay.com.au; Expires=Sun, 16 Feb 2025 09:05:38 UTC
set-cookie: __uzmc=704381016017; Path=/; Domain=.ebay.com.au; Expires=Sun, 16 Feb 2025 09:05:38 UTC
set-cookie: __uzmd=1724144738; Path=/; Domain=.ebay.com.au; Expires=Sun, 16 Feb 2025 09:05:38 UTC
set-cookie: __uzme=7189; Path=/; Domain=.ebay.com.au; Expires=Sun, 16 Feb 2025 09:05:38 UTC
set-cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10; Path=/; Domain=.ebay.com.au; Expires=Sun, 16 Feb 2025 09:05:38 UTC
set-cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAiDAU2ORAQAAIOEIbxjACNNUk3J1RjQNO5zbfTjvc6jv/UQBRqSDTzHBfWaNtbfA3gPkQp1G4pieObbmggT6P1efyztgMFukbtQO5AN3MrTJAMk0UzblELNrjmcv3WS5OkhsJySqiwUwxWsKCZCXaigkPOM580APGOVi2v6PqYkzNlX+hM+VEbNnULbmBb9ysL2u9N9MJek0wgYlEuutL9twpjCKeoGX6wX1vcRuwXs2pAvTJrrsQP/DQg==~1; Domain=.ebay.com.au; Path=/; Expires=Tue, 20 Aug 2024 11:05:38 GMT; Max-Age=7200; Secure
GET

https://www.ebay.com.au/gh/useracquisition?correlation=si%3D6f08dc9c1910acf39cc05acaffff2dfa%2Cc%3D1%2CoperationId%3D4375194%2Ctrk-gflgs%3DQA**&show_optin_banner=true&v=2

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /gh/useracquisition?correlation=si%3D6f08dc9c1910acf39cc05acaffff2dfa%2Cc%3D1%2CoperationId%3D4375194%2Ctrk-gflgs%3DQA**&show_optin_banner=true&v=2 HTTP/2.0
host: www.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAiDAU2ORAQAAIOEIbxjACNNUk3J1RjQNO5zbfTjvc6jv/UQBRqSDTzHBfWaNtbfA3gPkQp1G4pieObbmggT6P1efyztgMFukbtQO5AN3MrTJAMk0UzblELNrjmcv3WS5OkhsJySqiwUwxWsKCZCXaigkPOM580APGOVi2v6PqYkzNlX+hM+VEbNnULbmBb9ysL2u9N9MJek0wgYlEuutL9twpjCKeoGX6wX1vcRuwXs2pAvTJrrsQP/DQg==~1
cookie: dp1=bbl/GB6a86c362^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMvkmKOWKUU5aTkSaHQ3rYGeksY6w
cookie: ebay=%5Esbf%3D%23100000%5E

Response

HTTP/2.0 200

rlogid: t6fug%60f%3F%3Ckuvcwbbc*ifl%7Fs%28rbpv6762-18a6af900c4-0x101
etag: adb036f7e8512cca6399d6a05a2dfc6a
last-modified: Wed, 6 Sep 2023 14:50:18 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
permissions-policy:
content-encoding: gzip
content-type: image/x-icon
server: ebay-proxy-server
x-envoy-upstream-service-time: 13
strict-transport-security: max-age=600
x-ebay-pop-id: SLBSLCAZ03
content-length: 1858
date: Tue, 20 Aug 2024 09:05:38 GMT
vary: Accept-Encoding
GET

https://pages.ebay.com/favicon.ico

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /favicon.ico HTTP/2.0
host: pages.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
access-control-allow-credentials: true
content-security-policy-report-only: style-src 'self' 'unsafe-inline' data: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.cn; connect-src 'self' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au data: *.perfdrive.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.cn blob: data: *.ebayrtm.com; frame-ancestors 'none' ; default-src 'self' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebayimg.com; report-uri https://monitor.ebay.com/csp-report/ifhweb/IFHBundle?id=5402415913986838207&rid=t6jcnpfgehmq%3C%3Djcnpfgehmq%2B2%60g1%3Fa0b%3F.%7Fwtur-1916590b898-0x504#pd
content-type: text/javascript; charset=utf-8
cache-control: public, no-cache
etag: W/"39c8-XjFu84wvEzWHY04oPZIK2BlvWgs"
rlogid: t6jcnpfgehmq%3C%3Djcnpfgehmq%2B2%60g1%3Fa0b%3F.%7Fwtur-1916590b898-0x504
content-encoding: gzip
x-envoy-upstream-service-time: 233
x-ebay-mesh-server-pod-ip: 10.98.52.174
x-ebay-mesh-server-duration: 64
x-ebay-mesh-server-start: 2024-08-18T12:57:48.950Z
x-ebay-mesh-server-response-flag: -
server: ebay-proxy-server
x-ebay-mesh-gw-name: istioingressgateway-production-rnoaz06-03
x-ebay-mesh-gw-pod-name: istio-ingressgateway-03-795dfc8-wvc5d
x-ebay-mesh-gw-pod-ip: 10.115.149.21
x-ebay-mesh-gw-upstream-duration: 68
x-ebay-mesh-gw-duration: 69
x-ebay-mesh-gw-start: 2024-08-18T12:57:48.945Z
x-ebay-mesh-gw-response-flag: -
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 5565
vary: Accept-Encoding
GET

https://www.ebay.com.au/ifh/inflowcomponent?callback=Inflow.cb&fromGH=true&input=%7B%22pageId%22%3A4432023%2C%22gbhEnabled%22%3Afalse%7D

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /ifh/inflowcomponent?callback=Inflow.cb&fromGH=true&input=%7B%22pageId%22%3A4432023%2C%22gbhEnabled%22%3Afalse%7D HTTP/2.0
host: www.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-platform-version: "10.0"
dnt: 1
sec-ch-ua-model:
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAiDAU2ORAQAAIOEIbxjACNNUk3J1RjQNO5zbfTjvc6jv/UQBRqSDTzHBfWaNtbfA3gPkQp1G4pieObbmggT6P1efyztgMFukbtQO5AN3MrTJAMk0UzblELNrjmcv3WS5OkhsJySqiwUwxWsKCZCXaigkPOM580APGOVi2v6PqYkzNlX+hM+VEbNnULbmBb9ysL2u9N9MJek0wgYlEuutL9twpjCKeoGX6wX1vcRuwXs2pAvTJrrsQP/DQg==~1
cookie: dp1=bbl/GB6a86c362^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMvkmKOWKUU5aTkSaHQ3rYGeksY6w
cookie: ebay=%5Esbf%3D%23100000%5E

Response

HTTP/2.0 200

x-content-type-options: nosniff
accept-ranges: bytes
cache-control: public, max-age=86400
last-modified: Tue, 30 Jul 2024 04:52:19 GMT
etag: W/"515fa-19101fb6b26"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
x-envoy-upstream-service-time: 134
x-ebay-mesh-server-pod-ip: 10.223.76.38
x-ebay-mesh-server-duration: 4
x-ebay-mesh-server-start: 2024-08-20T00:20:48.291Z
x-ebay-mesh-server-response-flag: -
server: ebay-proxy-server
x-ebay-mesh-gw-name: istioingressgateway-production-lvsaz02-03
x-ebay-mesh-gw-pod-name: istio-ingressgateway-03-75bb58c5d9-tr64v
x-ebay-mesh-gw-pod-ip: 10.115.152.60
x-ebay-mesh-gw-upstream-duration: 10
x-ebay-mesh-gw-duration: 11
x-ebay-mesh-gw-start: 2024-08-20T00:20:48.286Z
x-ebay-mesh-gw-response-flag: -
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 77101
vary: Accept-Encoding
GET

https://www.ebay.com.au/ifh/ifh-vendor7f7973c106349b07f2c1.js

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /ifh/ifh-vendor7f7973c106349b07f2c1.js HTTP/2.0
host: www.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-platform-version: "10.0"
dnt: 1
sec-ch-ua-model:
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAiDAU2ORAQAAIOEIbxjACNNUk3J1RjQNO5zbfTjvc6jv/UQBRqSDTzHBfWaNtbfA3gPkQp1G4pieObbmggT6P1efyztgMFukbtQO5AN3MrTJAMk0UzblELNrjmcv3WS5OkhsJySqiwUwxWsKCZCXaigkPOM580APGOVi2v6PqYkzNlX+hM+VEbNnULbmBb9ysL2u9N9MJek0wgYlEuutL9twpjCKeoGX6wX1vcRuwXs2pAvTJrrsQP/DQg==~1
cookie: dp1=bbl/GB6a86c362^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMvkmKOWKUU5aTkSaHQ3rYGeksY6w
cookie: ebay=%5Esbf%3D%23100000%5E

Response

HTTP/2.0 200

x-content-type-options: nosniff
accept-ranges: bytes
cache-control: public, max-age=86400
last-modified: Tue, 30 Jul 2024 04:52:19 GMT
etag: W/"39311-19101fb6b26"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
x-envoy-upstream-service-time: 153
x-ebay-mesh-server-pod-ip: 10.141.42.218
x-ebay-mesh-server-duration: 5
x-ebay-mesh-server-start: 2024-08-20T06:44:47.069Z
x-ebay-mesh-server-response-flag: -
server: ebay-proxy-server
x-ebay-mesh-gw-name: istioingressgateway-production-slcaz04-03
x-ebay-mesh-gw-pod-name: istio-ingressgateway-03-6cd9bbcf68-nwczj
x-ebay-mesh-gw-pod-ip: 10.115.146.153
x-ebay-mesh-gw-upstream-duration: 10
x-ebay-mesh-gw-duration: 10
x-ebay-mesh-gw-start: 2024-08-20T06:44:47.064Z
x-ebay-mesh-gw-response-flag: -
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 58132
vary: Accept-Encoding
GET

https://www.ebay.com.au/ifh/ifhab13b28202fc4cf10704.js

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /ifh/ifhab13b28202fc4cf10704.js HTTP/2.0
host: www.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-platform-version: "10.0"
dnt: 1
sec-ch-ua-model:
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAiDAU2ORAQAAIOEIbxjACNNUk3J1RjQNO5zbfTjvc6jv/UQBRqSDTzHBfWaNtbfA3gPkQp1G4pieObbmggT6P1efyztgMFukbtQO5AN3MrTJAMk0UzblELNrjmcv3WS5OkhsJySqiwUwxWsKCZCXaigkPOM580APGOVi2v6PqYkzNlX+hM+VEbNnULbmBb9ysL2u9N9MJek0wgYlEuutL9twpjCKeoGX6wX1vcRuwXs2pAvTJrrsQP/DQg==~1
cookie: dp1=bbl/GB6a86c362^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMvkmKOWKUU5aTkSaHQ3rYGeksY6w
cookie: ebay=%5Esbf%3D%23100000%5E

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ebay.com *.ebay.com.au *.ebay.au *.ebay.co.uk *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.co.uk *.ebaystatic.cn blob: data:; default-src 'self' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebay.co.uk *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.co.uk *.ebayimg.com; report-uri https://monitor.ebay.com/csp-report/globalheaderfrontend/GHUserAcquisition?id=1468988011850253821&rid=t6diiebinbbacuewiiw%60hc9%3Fjqpbjhadjofdbbqcthmqcig(qqir1*w%60ut355%3F-1916f08e277-0x2205#pd
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
etag: W/"20a58-wM9zTukwua42tHD+lPQPXfTxYTE"
rlogid: t6diiebinbbacuewiiw%60hc9%3Fjqpbjhadjofdbbqcthmqcig(qqir1*w%60ut355%3F-1916f08e277-0x2205
content-encoding: gzip
x-envoy-upstream-service-time: 276
server: ebay-proxy-server
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:05:39 GMT
vary: Accept-Encoding
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: dp1=bbl/GB6a86c362^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:39 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMyEI+KgUOMSAB6NTmZPBQQix7H4j; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:39 GMT; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23100000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAr/AU2ORAQAAROMIbxi5cm6lVG2I7hWwHc3Eld69kYV75X0o/ZTSg8qKRtROMUcOXK/ffoxICNJv9Cdy6IO1xaXojU0Rtop5i+t/Lib2YrPE8kNu+mfAT3Dh1jndiTHFBH6zRog/l9eTC3Nh3RYeqkp4iMFYYGHLEcCnyH14mOq/F0ZSbTeLX0FFZfoCQ79dvO6/yKD7+wlww3ziqNxHPV2Vlt0etEnHYjSleCRCQgWVWyXFkyZZExqsOg==~1; Domain=.ebay.com.au; Path=/; Expires=Tue, 20 Aug 2024 11:05:38 GMT; Max-Age=7199; Secure
GET

https://mkttag.ebay.com/tag-manager/v1/tag/madrona_loadscripts.js

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/madrona_loadscripts.js HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Ctofklwqg%60ndhfd%60t*u%7D321%28rbpv6612-1916efde4ff-0x2343
traceid: 9966c369e8870cb6024bbdcd5be4371e
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 61
server: ebay-proxy-server
x-ebay-pop-id: SLBSLCAZ01
cache-control: no-transform, max-age=2879
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 466
strict-transport-security: max-age=31536000
GET

https://mkttag.ebay.com/tag-manager/v1/tag/utag.js

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/utag.js HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Ckuvklwqg%60ndhfd%60t*7v0k%3A%28rbpv674%3C-1916eea8dad-0x2343
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 166
server: ebay-proxy-server
x-ebay-pop-id: SLBSLCAZ01
cache-control: no-transform, max-age=1612
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 15373
strict-transport-security: max-age=31536000
GET

https://mkttag.ebay.com/tag-manager/v1/tag/utag.3.js?utv=ut4.51.202408090023

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/utag.3.js?utv=ut4.51.202408090023 HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Cumjklwqg%60ndhfd%60t*ysk2s%28rbpv6713-1916ede4d8e-0x232e
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 67
server: ebay-proxy-server
x-ebay-pop-id: SLBRNOAZ05
cache-control: no-transform, max-age=809
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 6139
strict-transport-security: max-age=31536000
GET

https://mkttag.ebay.com/tag-manager/v1/tag/utag.7.js?utv=ut4.51.202408132109

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/utag.7.js?utv=ut4.51.202408132109 HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Ckuvklwqg%60ndhfd%60t*o%7Fhdm%28rbpv674%3C-1916ee8e79a-0x235d
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 172
server: ebay-proxy-server
x-ebay-pop-id: SLBSLCAZ01
cache-control: no-transform, max-age=1504
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 1719
strict-transport-security: max-age=31536000
GET

https://mkttag.ebay.com/tag-manager/v1/tag/utag.8.js?utv=ut4.51.202408080551

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/utag.8.js?utv=ut4.51.202408080551 HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Cumjklwqg%60ndhfd%60t*g7boy%28rbpv6713-1916eea8ec2-0x2360
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 34
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
cache-control: no-transform, max-age=1612
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 5759
strict-transport-security: max-age=31536000
GET

https://mkttag.ebay.com/tag-manager/v1/tag/utag.9.js?utv=ut4.51.202407311745

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/utag.9.js?utv=ut4.51.202407311745 HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Cumjklwqg%60ndhfd%60t*mbnpw%28rbpv6713-1916f087305-0x232e
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 45
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
cache-control: no-transform, max-age=3571
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 7643
strict-transport-security: max-age=31536000
GET

https://mkttag.ebay.com/tag-manager/v1/tag/utag.10.js?utv=ut4.51.202408132109

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/utag.10.js?utv=ut4.51.202408132109 HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Ctofklwqg%60ndhfd%60t*qtlqy%28rbpv6612-1916efde42d-0x233b
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 21
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
cache-control: no-transform, max-age=2879
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 4440
strict-transport-security: max-age=31536000
GET

https://mkttag.ebay.com/tag-manager/v1/tag/utag.11.js?utv=ut4.51.202408132109

msedge.exe

Remote address:

184.26.133.191:443

Request

GET /tag-manager/v1/tag/utag.11.js?utv=ut4.51.202408132109 HTTP/2.0
host: mkttag.ebay.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6nnrsbbkfmdabq%3F%3Ctofklwqg%60ndhfd%60t*63eus%28rbpv6612-1916eea9ae1-0x2334
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, authorization, ebay-marketing-tag-manager-user, APPName
access-control-allow-credentials: true
access-control-max-age: 500000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
vary: accept-encoding
content-encoding: gzip
content-type: application/javascript
x-envoy-upstream-service-time: 66
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
cache-control: no-transform, max-age=1615
date: Tue, 20 Aug 2024 09:05:39 GMT
content-length: 3887
strict-transport-security: max-age=31536000
POST

https://www.ebay.com.au/gh/gadget_csm?v=2

msedge.exe

Remote address:

184.26.133.191:443

Request

POST /gh/gadget_csm?v=2 HTTP/2.0
host: www.ebay.com.au
content-length: 54
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAr/AU2ORAQAAROMIbxi5cm6lVG2I7hWwHc3Eld69kYV75X0o/ZTSg8qKRtROMUcOXK/ffoxICNJv9Cdy6IO1xaXojU0Rtop5i+t/Lib2YrPE8kNu+mfAT3Dh1jndiTHFBH6zRog/l9eTC3Nh3RYeqkp4iMFYYGHLEcCnyH14mOq/F0ZSbTeLX0FFZfoCQ79dvO6/yKD7+wlww3ziqNxHPV2Vlt0etEnHYjSleCRCQgWVWyXFkyZZExqsOg==~1
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: ebay=%5Esbf%3D%23000000%5E
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NDczOTA3OCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMiUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMSU3RA==
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: dp1=bbl/GB6a86c364^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+RFQzRSMEFOAMoAIGqGw2Q2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNsNZj25tFWRqFBkntxBsuab0yt1irD
cookie: _fbp=fb.2.1724144739275.197283122760891003

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ebay.com *.ebay.com.au *.ebay.au *.ebay.co.uk *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.co.uk *.ebaystatic.cn blob: data:; default-src 'self' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebay.co.uk *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.co.uk *.ebayimg.com; report-uri https://monitor.ebay.com/csp-report/globalheaderfrontend/GadgetClientSideMonitoring?id=1468988011850253821&rid=t6diiebinbbacuewiiw%60hc9%3Fjqpbjhadjofdbbqcthmqcig(4eknw*w%60ut3540-1916f08f8a0-0x102#pd
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 21
etag: W/"15-DXJDEAdy/TklQyIxDe6TaFldXw4"
rlogid: t6diiebinbbacuewiiw%60hc9%3Fjqpbjhadjofdbbqcthmqcig(4eknw*w%60ut3540-1916f08f8a0-0x102
x-envoy-upstream-service-time: 162
server: ebay-proxy-server
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:05:44 GMT
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: dp1=bbl/GB6a86c368^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:44 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+hFQzRSMEFOAMoAIGqGw2g2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNwNh1EJ00pXkkmUdTN+YQrpZeWDK5k; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:44 GMT; HttpOnly; Secure
set-cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAlDGU2ORAQAA8/gIbxh63GKvZEzW5qDRSJobWCtXpevfEuxoLo/Mv5BKxpPOuIvTXaws/7VG17g3DFNUayPNzHxsHxn2FdtJoqHw7pVCetK+PGQRsrPdD1O/23ct3OanUKrzBhCaaFP2yoCNShY0E4iruPNZrTU10ox8k1sdeDVi2+4RGwcryVRQNzvyrsuv5MLM2WVRLFlTet2OEX+uPNNy1KINkQhxpejvFJGe9gW1QPjczOpFFXfzIw==~1; Domain=.ebay.com.au; Path=/; Expires=Tue, 20 Aug 2024 11:05:38 GMT; Max-Age=7194; Secure
DNS

srv.au.ebayrtm.com

msedge.exe

Remote address:

8.8.8.8:53

Request

srv.au.ebayrtm.com

IN A

Response

srv.au.ebayrtm.com

IN CNAME

srv.intl2.ebayrtm.com

srv.intl2.ebayrtm.com

IN CNAME

madronaext.g.ebay.com

madronaext.g.ebay.com

IN A

66.211.166.8

madronaext.g.ebay.com

IN A

209.140.129.85

madronaext.g.ebay.com

IN A

66.211.163.8
DNS

i.ebayimg.com

msedge.exe

Remote address:

8.8.8.8:53

Request

i.ebayimg.com

IN A

Response

i.ebayimg.com

IN CNAME

images.ebaycdn.net

images.ebaycdn.net

IN CNAME

ipv6.slot9428.ebay.com.edgekey.net

ipv6.slot9428.ebay.com.edgekey.net

IN CNAME

e9428.dsca.akamaiedge.net

e9428.dsca.akamaiedge.net

IN A

184.26.133.88
DNS

ir.ebaystatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ir.ebaystatic.com

IN A

Response

ir.ebaystatic.com

IN CNAME

ir.ebaycdn.net

ir.ebaycdn.net

IN CNAME

cs1889.wpc.systemcdn.net

cs1889.wpc.systemcdn.net

IN A

93.184.223.214
GET

https://srv.au.ebayrtm.com/rtm?RtmCmd&a=json&uf=0&g=6f08dc9c1910acf39cc05acaffff2dfa&cg=0&c=1H4sIAAAAAAAAAzVQPW%2FCMBTc%2FSue1AWk4rznZyd8yAOqKirRdCEVSxdDXLAIiQWJUvrrqxQx3Z3ubrh7KjoPy%2B4ACkGh0oBqjmbOGazyYoIZIozypqtbF2rYtK4u3aWEIpz9WESephZFVIbtTURmtHnzG6rKJUYijLahLpv%2BCh8FEEpcwDbUqV7AT6rHsIyx8lu%2FW4c2MZxJTmG0fivy92eowsnDyu9PzRhejpfm7JOZkii1ISOJCTbu213Co%2FZaHu7%2BDJVMMxFJWTIiaibLA6g7sPX1ZPk5UD0E9qG0PP3qEJFEVKzthESkKVutWaHiQZAlhTiMU%2FbYtvE6T5K%2B76XfuZvcN2fpumQ4IvsvM5OlmZZEKIllhuIPli20CmABAAA%3D&p=1650&di=1650&v=4&enc=UTF-8&cb=window.VL_AD_TRACKING_CALLBACK

msedge.exe

Remote address:

66.211.166.8:443

Request

GET /rtm?RtmCmd&a=json&uf=0&g=6f08dc9c1910acf39cc05acaffff2dfa&cg=0&c=1H4sIAAAAAAAAAzVQPW%2FCMBTc%2FSue1AWk4rznZyd8yAOqKirRdCEVSxdDXLAIiQWJUvrrqxQx3Z3ubrh7KjoPy%2B4ACkGh0oBqjmbOGazyYoIZIozypqtbF2rYtK4u3aWEIpz9WESephZFVIbtTURmtHnzG6rKJUYijLahLpv%2BCh8FEEpcwDbUqV7AT6rHsIyx8lu%2FW4c2MZxJTmG0fivy92eowsnDyu9PzRhejpfm7JOZkii1ISOJCTbu213Co%2FZaHu7%2BDJVMMxFJWTIiaibLA6g7sPX1ZPk5UD0E9qG0PP3qEJFEVKzthESkKVutWaHiQZAlhTiMU%2FbYtvE6T5K%2B76XfuZvcN2fpumQ4IvsvM5OlmZZEKIllhuIPli20CmABAAA%3D&p=1650&di=1650&v=4&enc=UTF-8&cb=window.VL_AD_TRACKING_CALLBACK HTTP/1.1
Host: srv.au.ebayrtm.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.ebay.com.au/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

rlogid: t6ndbulkgb%7Bq%3C%3Dosujbathmdc%7Fw%28n5q3q*w%60ut355%3F-1916f08e218-0x2362
down-rlogids: MadronaExt-To-Madrona=t6mwrj9%3Fjqpktsn%28pa4nm*w%60ut355%3F-1916f08e21b-0x236c;
content-type: application/x-javascript;charset=UTF-8
content-length: 1222
date: Tue, 20 Aug 2024 09:05:38 GMT
x-envoy-upstream-service-time: 71
server: ebay-proxy-server
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBSLCAZ03
GET

https://srv.au.ebayrtm.com/rtm?RtmCmd&a=json&uf=0&g=6f08dc9c1910acf39cc05acaffff2dfa&cg=0&c=1H4sIAAAAAAAAAzVQPW%2FCMBTc%2FSue1AWk4rznZyd8yAOqKirRdCEVSxdDXLAIiQWJUvrrqxQx3Z3ubrh7KjoPy%2B4ACkGh0oBqjmbOGazyYoIZIozypqtbF2rYtK4u3aWEIpz9WESephZFVIbtTURmtHnzG6rKJUYijLahLpv%2BCh8FEEpcwDbUqV7AT6rHsIyx8lu%2FW4c2MZxJTmG0fivy92eowsnDyu9PzRhejpfm7JOZkii1ISOJCTbu213Co%2FZaHu7%2BDJVMMxFJWTIiaibLA6g7sPX1ZPk5UD0E9qG0PP3qEJFEVKzthESkKVutWaHiQZAlhTiMU%2FbYtvE6T5K%2B76XfuZvcN2fpumQ4IvsvM5OlmZZEKIllhuIPli20CmABAAA%3D&p=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&di=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&v=4&enc=UTF-8&cb=window.VL_FLYOUT_NAV_RTM_CALLBACK

msedge.exe

Remote address:

66.211.166.8:443

Request

GET /rtm?RtmCmd&a=json&uf=0&g=6f08dc9c1910acf39cc05acaffff2dfa&cg=0&c=1H4sIAAAAAAAAAzVQPW%2FCMBTc%2FSue1AWk4rznZyd8yAOqKirRdCEVSxdDXLAIiQWJUvrrqxQx3Z3ubrh7KjoPy%2B4ACkGh0oBqjmbOGazyYoIZIozypqtbF2rYtK4u3aWEIpz9WESephZFVIbtTURmtHnzG6rKJUYijLahLpv%2BCh8FEEpcwDbUqV7AT6rHsIyx8lu%2FW4c2MZxJTmG0fivy92eowsnDyu9PzRhejpfm7JOZkii1ISOJCTbu213Co%2FZaHu7%2BDJVMMxFJWTIiaibLA6g7sPX1ZPk5UD0E9qG0PP3qEJFEVKzthESkKVutWaHiQZAlhTiMU%2FbYtvE6T5K%2B76XfuZvcN2fpumQ4IvsvM5OlmZZEKIllhuIPli20CmABAAA%3D&p=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&di=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&v=4&enc=UTF-8&cb=window.VL_FLYOUT_NAV_RTM_CALLBACK HTTP/1.1
Host: srv.au.ebayrtm.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.ebay.com.au/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

rlogid: t6ndbulkgb%7Bq%3C%3Dqkijbathmdc%7Fw%280%3F17k*w%60ut3550-1916f08e30e-0x2370
down-rlogids: MadronaExt-To-Madrona=t6mwrj9%3Ftilktsn%28e5ni%60*w%60ut35%3F3-1916f08e311-0x236f;
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:38 GMT
x-envoy-upstream-service-time: 50
server: ebay-proxy-server
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBSLCAZ03
transfer-encoding: chunked
GET

https://ir.ebaystatic.com/pictures/aw/pics/s_1x2.gif

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /pictures/aw/pics/s_1x2.gif HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 355883
cache-control: max-age=31536000
content-type: image/gif
date: Tue, 20 Aug 2024 09:05:37 GMT
etag: "31-60a13cfaaae53"
expires: Wed, 20 Aug 2025 09:05:37 GMT
last-modified: Tue, 14 Nov 2023 02:47:44 GMT
server: ECAcc (lhd/35C3)
strict-transport-security: max-age=31536000
via: 1.1 pics-cache-0 (squid)
x-cache: HIT
x-cache-lookup: HIT from pics-cache-0:8080
x-cdn: VDMS
content-length: 49
GET

https://ir.ebaystatic.com/rs/c/vertlandweb/r.598c1013.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /rs/c/vertlandweb/r.598c1013.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 34942
cache-control: public, max-age=31536000, immutable
content-type: application/x-javascript
date: Tue, 20 Aug 2024 09:05:37 GMT
expires: Wed, 20 Aug 2025 09:05:38 GMT
last-modified: Mon, 19 Aug 2024 17:37:21 GMT
rlogid: t6q%60utuf%3C%3Dqkiufvuq%60%284k5cr*w%60ut3550-1916cf3b2ae-0xf2
server: ECAcc (lhd/35DA)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-0 (squid)
x-cache: HIT
x-cache-lookup: MISS from include-cache-0:8080
x-cdn: VDMS
x-ebay-c-version: 1.0.0
content-length: 240174
GET

https://ir.ebaystatic.com/cr/v/c1/ebay-cookies/5.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c1/ebay-cookies/5.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 2778775
cache-control: public, max-age=30986493
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:37 GMT
last-modified: Fri, 19 Jul 2024 05:12:44 GMT
rlogid: t6q%60uebwh%3D9iptq%60uebwh*%3A3j%7Dm%28rbpv670%3D-190c9681c2b-0x232b
server: ECAcc (lhd/35BB)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-1 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-1:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 3008
GET

https://ir.ebaystatic.com/cr/v/c01/nh24070265b74ffae1964cce828.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c01/nh24070265b74ffae1964cce828.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 4099066
cache-control: public, max-age=30986493
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:37 GMT
last-modified: Wed, 03 Jul 2024 22:27:51 GMT
rlogid: t6q%60uebwh%3D9iptq%60uebwh*kv%3Ei5%28rbpv670%3D-1907ab615bf-0x235a
server: ECAcc (lhd/35B2)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-3 (squid)
x-cache: HIT
x-cache-lookup: MISS from include-cache-3:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 8686
GET

https://ir.ebaystatic.com/cr/v/c01/ubt24070236dd1e675d8f4e7497.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c01/ubt24070236dd1e675d8f4e7497.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 1505614
cache-control: public, max-age=30986493
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:37 GMT
last-modified: Fri, 02 Aug 2024 22:52:03 GMT
rlogid: t6q%60uebwh%3D9vjdq%60uebwh*th2oq%28rbpv6775-191154b02f5-0x2362
server: ECAcc (lhd/35B9)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-3 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-3:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 3496
GET

https://ir.ebaystatic.com/cr/v/c1/market-sans/v1.0/MarketSans-Regular-WebS.woff2

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c1/market-sans/v1.0/MarketSans-Regular-WebS.woff2 HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://ir.ebaystatic.com/rs/c/vertlandweb/r.1bc38966.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 13544674
cache-control: public, max-age=30986493
content-type: application/font-woff2
date: Tue, 20 Aug 2024 09:05:38 GMT
last-modified: Sat, 16 Mar 2024 14:41:04 GMT
rlogid: t6q%60uebwh%3D9whhq%60uebwh*i1t5y%28rbpv6710-18e47b58d7d-0x2329
server: ECAcc (lhd/3594)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-0 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-0:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 22156
GET

https://ir.ebaystatic.com/cr/v/c1/market-sans/v1.0/MarketSans-SemiBold-WebS.woff2

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c1/market-sans/v1.0/MarketSans-SemiBold-WebS.woff2 HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://ir.ebaystatic.com/rs/c/vertlandweb/r.1bc38966.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 12895587
cache-control: public, max-age=30986493
content-type: application/font-woff2
date: Tue, 20 Aug 2024 09:05:38 GMT
last-modified: Sun, 24 Mar 2024 02:59:11 GMT
rlogid: t6q%60uebwh%3D9vjdq%60uebwh*43rlq%28rbpv6775-18e6e65d4bb-0x234b
server: ECAcc (lhd/3599)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-2 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-2:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 22468
GET

https://ir.ebaystatic.com/rs/v/ebhvksgh5u1b3lhxfttzolhgci2.css?proc=DU:N

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /rs/v/ebhvksgh5u1b3lhxfttzolhgci2.css?proc=DU:N HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 567436
cache-control: public, max-age=31536000, immutable
content-type: text/css;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:37 GMT
expires: Wed, 20 Aug 2025 09:05:37 GMT
last-modified: Tue, 13 Aug 2024 19:21:10 GMT
rlogid: t6q%60utuf%3C%3Dosuufvuq%60%28v3d%3Ck*w%60ut3540-1914d36799f-0xe9
server: ECAcc (lhd/35D0)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-2 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-2:8080
x-cdn: VDMS
x-ebay-c-version: 1.0.0
x-ebay-client-tls-version: TLSv1.2, 72.21.85.180
content-length: 16703
GET

https://ir.ebaystatic.com/rs/c/vertlandweb/r.1bc38966.css

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /rs/c/vertlandweb/r.1bc38966.css HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 987203
cache-control: public, max-age=31536000, immutable
content-type: text/css
date: Tue, 20 Aug 2024 09:05:37 GMT
expires: Wed, 20 Aug 2025 09:05:37 GMT
last-modified: Thu, 08 Aug 2024 18:48:17 GMT
rlogid: t6q%60utuf%3C%3Dosuufvuq%60%28v0w%7Fr*w%60ut3540-1913431570a-0xe9
server: ECAcc (lhd/35FC)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-0 (squid)
x-cache: HIT
x-cache-lookup: MISS from include-cache-0:8080
x-cdn: VDMS
x-ebay-c-version: 1.0.0
x-ebay-client-tls-version: TLSv1.2, 46.22.76.242
content-length: 52865
GET

https://ir.ebaystatic.com/cr/v/c1/eBayPlus/ebayPlus-Logo-58x15.svg

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c1/eBayPlus/ebayPlus-Logo-58x15.svg HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 5460165
cache-control: public, max-age=30986493
content-type: image/svg+xml
date: Tue, 20 Aug 2024 09:05:37 GMT
last-modified: Tue, 18 Jun 2024 15:25:03 GMT
rlogid: t6q%60uebwh%3D9whhq%60uebwh*ssp%60p%28rbpv6710-19029955bfb-0x2362
server: ECAcc (lhd/35C5)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-2 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-2:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 1071
GET

https://ir.ebaystatic.com/rs/v/aita3vwhpiyk3byvmscxxtinca0.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /rs/v/aita3vwhpiyk3byvmscxxtinca0.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 2907179
cache-control: public, max-age=31536000, immutable
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:37 GMT
expires: Wed, 20 Aug 2025 09:05:38 GMT
last-modified: Tue, 11 Jun 2024 19:49:53 GMT
rlogid: t6q%60utuf%3C%3Dqkiufvuq%60%28k3d%7D0*w%60ut3550-190c1c0d4e7-0x4b233c
server: ECAcc (lhd/35A6)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-2 (squid)
x-cache: HIT
x-cache-lookup: MISS from include-cache-2:8080
x-cdn: VDMS
x-ebay-c-version: 1.0.0
content-length: 40234
GET

https://ir.ebaystatic.com/pictures/aw/pics/cmp/ds3/sprds3_20.png

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /pictures/aw/pics/cmp/ds3/sprds3_20.png HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ir.ebaystatic.com/rs/v/ebhvksgh5u1b3lhxfttzolhgci2.css?proc=DU:N
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 453757
cache-control: max-age=31536000
content-type: image/png
date: Tue, 20 Aug 2024 09:05:38 GMT
etag: "156f6-60a13b166f04f"
expires: Wed, 20 Aug 2025 09:05:38 GMT
last-modified: Tue, 14 Nov 2023 02:39:17 GMT
server: ECAcc (lhd/35A5)
strict-transport-security: max-age=31536000
via: 1.1 pics-cache-2 (squid)
x-cache: HIT
x-cache-lookup: HIT from pics-cache-2:8080
x-cdn: VDMS
content-length: 87798
GET

https://ir.ebaystatic.com/rs/v/fxxj3ttftm5ltcqnto1o4baovyl.png

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /rs/v/fxxj3ttftm5ltcqnto1o4baovyl.png HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ir.ebaystatic.com/rs/v/ebhvksgh5u1b3lhxfttzolhgci2.css?proc=DU:N
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 14025941
cache-control: public, max-age=31536000, immutable
content-type: image/png
date: Tue, 20 Aug 2024 09:05:38 GMT
expires: Wed, 20 Aug 2025 09:05:38 GMT
last-modified: Wed, 29 Oct 2014 18:09:24 GMT
rlogid: t6q%60utuf%3C%3Dpieufvuq%60%28moiu4*w%60ut3527-18e2b05ffbd-0xe8
server: ECAcc (lhd/3592)
strict-transport-security: max-age=31536000
via: 1.1 include-cache-1 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-1:8080
x-cdn: VDMS
x-ebay-c-version: 1.0.0
content-length: 4820
GET

https://ir.ebaystatic.com/cr/v/c01/ac-080524215914.dweb.min.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c01/ac-080524215914.dweb.min.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 1181678
cache-control: public, max-age=30986493
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:38 GMT
last-modified: Tue, 06 Aug 2024 17:21:24 GMT
rlogid: t6q%60uebwh%3D9iptq%60uebwh*kv%3Ei5%28rbpv670%3D-1912899e71d-0x232f
server: ECAcc (lhd/35E5)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-1 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-1:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 28176
GET

https://ir.ebaystatic.com/cr/v/c1/globalheader_widget_platform__v2-b70676194b.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c1/globalheader_widget_platform__v2-b70676194b.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 13308714
cache-control: public, max-age=30986493
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:38 GMT
last-modified: Sun, 24 Mar 2024 02:58:57 GMT
rlogid: t6q%60uebwh%3D9iptq%60uebwh*m1%3F2w%28rbpv670%3D-18e55c606ed-0x2334
server: ECAcc (lhd/35D7)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-2 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-2:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 4611
GET

https://ir.ebaystatic.com/cr/v/c01/78cd5f76-beb8-486a-ae47-cbb49ea19309.min.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c01/78cd5f76-beb8-486a-ae47-cbb49ea19309.min.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 2312981
cache-control: public, max-age=30986493
content-type: application/x-javascript;charset=UTF-8
date: Tue, 20 Aug 2024 09:05:38 GMT
last-modified: Wed, 24 Jul 2024 14:35:57 GMT
rlogid: t6q%60uebwh%3D9vjdq%60uebwh*th2oq%28rbpv6775-190e52b97cc-0x233f
server: ECAcc (lhd/35FB)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-3 (squid)
x-cache: HIT
x-cache-lookup: MISS from include-cache-3:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 110904
GET

https://ir.ebaystatic.com/cr/v/c1/1x1.gif

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /cr/v/c1/1x1.gif HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 12991924
cache-control: public, max-age=30986493
content-type: image/gif
date: Tue, 20 Aug 2024 09:05:39 GMT
last-modified: Sun, 24 Mar 2024 03:04:26 GMT
rlogid: t6q%60uebwh%3D9vjdq%60uebwh*qsvtp%28rbpv6775-18e68a7dfce-0x2364
server: ECAcc (lhd/3589)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-2 (squid)
x-cache: HIT
x-cache-lookup: HIT from include-cache-2:8080
x-cdn: VDMS
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 802
GET

https://ir.ebaystatic.com/rs/c/9527tracking/configuration.js?ts=5747149

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /rs/c/9527tracking/configuration.js?ts=5747149 HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 83089
cache-control: max-age=604800
content-type: text/javascript
date: Tue, 20 Aug 2024 09:05:39 GMT
etag: "3757670425+gzip+br"
expires: Tue, 27 Aug 2024 09:05:39 GMT
last-modified: Fri, 09 Aug 2024 09:54:23 GMT
server: ECAcc (lhd/3588)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: HIT
x-cdn: VDMS
content-length: 332
GET

https://ir.ebaystatic.com/rs/c/sub-EF1KPzv6.js

msedge.exe

Remote address:

93.184.223.214:443

Request

GET /rs/c/sub-EF1KPzv6.js HTTP/2.0
host: ir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://devicebind.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
age: 9622758
cache-control: public, max-age=31536000, immutable
content-type: application/x-javascript
date: Tue, 20 Aug 2024 09:05:40 GMT
expires: Wed, 20 Aug 2025 09:05:40 GMT
last-modified: Wed, 01 May 2024 00:06:16 GMT
rlogid: t6q%60utuf%3C%3Dqkiufvuq%60%28mupnd*w%60ut3550-18f317947ab-0x105
server: ECAcc (lhd/35ED)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 include-cache-1 (squid)
x-cache: HIT
x-cache-lookup: MISS from include-cache-1:8080
x-cdn: VDMS
x-ebay-c-version: 1.0.0
content-length: 1724
DNS

rover.ebay.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rover.ebay.com

IN A

Response

rover.ebay.com

IN CNAME

rover.ebaycdn.net

rover.ebaycdn.net

IN CNAME

andes.g.ebay.com

andes.g.ebay.com

IN A

209.140.135.138

andes.g.ebay.com

IN A

66.211.163.23
GET

https://i.ebayimg.com/images/g/PnkAAOSwo95mqxXA/s-l960.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /images/g/PnkAAOSwo95mqxXA/s-l960.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*6bdqi%28rbpv6762-191535fe13a-0x12e
x-ebay-c-version: 1.0.0
last-modified: Wed, 31 Jul 2024 16:57:35 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Fri, 15 Aug 2025 00:11:18 GMT
content-type: image/webp
content-length: 31336
server: ebay-proxy-server
x-envoy-upstream-service-time: 668
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918b5d2
GET

https://i.ebayimg.com/images/g/jLYAAOSw5olmonLS/s-l1600.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /images/g/jLYAAOSw5olmonLS/s-l1600.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*wnbke%28rbpv6612-19103db02cc-0x14b
x-ebay-c-version: 1.0.0
last-modified: Thu, 25 Jul 2024 15:44:18 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 30 Jul 2025 13:36:10 GMT
content-type: image/webp
content-length: 41604
server: ebay-proxy-server
x-envoy-upstream-service-time: 30
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918b5d5
GET

https://rover.ebay.com.au/roverimp/0/0/9?imp=2046301&trknvp=cp%3D4432023%26ghi%3D98&1724144737218

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /roverimp/0/0/9?imp=2046301&trknvp=cp%3D4432023%26ghi%3D98&1724144737218 HTTP/2.0
host: rover.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: dp1=bbl/GB6a86c361^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+FFQzRSMEFOAMoAIGqGw2E2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNpMdk4GMB6v7m0J5BTwscYDKm3yLqu
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: ebay=%5Esbf%3D%23100000%5E

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-type: image/gif
content-length: 42
etag: W/"2a-Mo5HJyGpM0WAHtVTMkDqwtH4SYw"
rlogid: t6bkbbp%3F%3Ctofgig%60u*%3Asmeh(rbpv6770-1916f08e111-0x2105
x-envoy-upstream-service-time: 33
server: ebay-proxy-server
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBLVSAZ01
date: Tue, 20 Aug 2024 09:05:38 GMT
set-cookie: dp1=bbl/GB6a86c362^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:38 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMvkmKOWKUU5aTkSaHQ3rYGeksY6w; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:38 GMT; HttpOnly; Secure
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
GET

https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/7~sAAOSw535mrGL-/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MzQwWDM0MA==/z/7~sAAOSw535mrGL-/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*ivw%7D%7B%28rbpv6612-19124fda15c-0x151
x-ebay-c-version: 1.0.0
last-modified: Thu, 01 Aug 2024 16:48:41 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 03 Jan 2025 00:01:27 GMT
content-type: image/jpeg
content-length: 18660
server: ebay-proxy-server
x-envoy-upstream-service-time: 11
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c13a
GET

https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/4AsAAOSwxlxmrGp0/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MzQwWDM0MA==/z/4AsAAOSwxlxmrGp0/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*e3a%60%60%28rbpv674%3C-19153815c67-0x155
x-ebay-c-version: 1.0.0
last-modified: Tue, 13 Aug 2024 15:48:29 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Fri, 15 Aug 2025 00:47:52 GMT
content-type: image/webp
content-length: 55302
server: ebay-proxy-server
x-envoy-upstream-service-time: 628
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c13b
GET

https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/SMwAAOSwtyZmrGUp/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MzQwWDM0MA==/z/SMwAAOSwtyZmrGUp/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*o%3Cm%3Ei%28rbpv6762-18f90f1ce43-0x162
x-ebay-c-version: 1.0.0
last-modified: Wed, 20 Dec 2023 17:52:00 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Wed, 16 Oct 2024 13:01:57 GMT
content-type: image/jpeg
content-length: 10323
server: ebay-proxy-server
x-envoy-upstream-service-time: 41
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c13c
GET

https://i.ebayimg.com/images/g/1zQAAOSw6~RmvCkO/s-l960.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /images/g/1zQAAOSw6~RmvCkO/s-l960.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*pq%60s1%28rbpv6602-19124fda15b-0x12a
x-ebay-c-version: 1.0.0
last-modified: Thu, 01 Aug 2024 16:47:40 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 03 Jan 2025 00:01:27 GMT
content-type: image/jpeg
content-length: 20708
server: ebay-proxy-server
x-envoy-upstream-service-time: 23
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c13f
GET

https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/tfgAAOSwySRlg9KA/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MTYwMFgxNjAw/z/tfgAAOSwySRlg9KA/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*5hkom%28rbpv6712-18f90f08799-0x13a
x-ebay-c-version: 1.0.0
last-modified: Wed, 20 Dec 2023 17:39:01 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Wed, 16 Oct 2024 13:00:33 GMT
content-type: image/jpeg
content-length: 12050
server: ebay-proxy-server
x-envoy-upstream-service-time: 43
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c140
GET

https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/Cp8AAOSwiYFmrGXY/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MzQwWDM0MA==/z/Cp8AAOSwiYFmrGXY/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*avw%7D%3B%28rbpv6612-19124fda162-0x154
x-ebay-c-version: 1.0.0
last-modified: Thu, 01 Aug 2024 16:50:32 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 03 Jan 2025 00:01:27 GMT
content-type: image/jpeg
content-length: 8990
nncoection: close
server: ebay-proxy-server
x-envoy-upstream-service-time: 9
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c147
GET

https://i.ebayimg.com/images/g/UXoAAOSwT75mouP5/s-l1600.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /images/g/UXoAAOSwT75mouP5/s-l1600.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*%3Brk2p%28rbpv6712-19124fda1a4-0x13a
x-ebay-c-version: 1.0.0
last-modified: Thu, 01 Aug 2024 16:39:26 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 03 Jan 2025 00:01:27 GMT
content-type: image/jpeg
content-length: 41704
server: ebay-proxy-server
x-envoy-upstream-service-time: 18
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c138
GET

https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/F40AAOSwQsNmrGTs/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MzQwWDM0MA==/z/F40AAOSwQsNmrGTs/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*t33%60%60%28rbpv6762-1913118b2b8-0x136
x-ebay-c-version: 1.0.0
last-modified: Thu, 08 Aug 2024 08:14:03 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Fri, 08 Aug 2025 08:26:28 GMT
content-type: image/webp
content-length: 23000
server: ebay-proxy-server
x-envoy-upstream-service-time: 25
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c141
GET

https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/WU4AAOSwOuVlg892/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MTYwMFgxNjAw/z/WU4AAOSwOuVlg892/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*g0r%7Da%28rbpv674%3C-19124fec376-0x14e
x-ebay-c-version: 1.0.0
last-modified: Thu, 01 Aug 2024 17:11:16 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 03 Jan 2025 00:02:41 GMT
content-type: image/jpeg
content-length: 22666
server: ebay-proxy-server
x-envoy-upstream-service-time: 204
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c139
GET

https://i.ebayimg.com/images/g/lKgAAOSwaPNmtH5L/s-l640.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /images/g/lKgAAOSwaPNmtH5L/s-l640.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*a0j%60u%28rbpv6775-19124fe1ac5-0x126
x-ebay-c-version: 1.0.0
last-modified: Thu, 01 Aug 2024 16:51:36 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 03 Jan 2025 00:01:58 GMT
content-type: image/jpeg
content-length: 40181
server: ebay-proxy-server
x-envoy-upstream-service-time: 12
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c13d
GET

https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/8D0AAOSwVEBmrGWY/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MzQwWDM0MA==/z/8D0AAOSwVEBmrGWY/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*gip%7Fu%28rbpv674%3C-19111e6cbd5-0x122
x-ebay-c-version: 1.0.0
last-modified: Thu, 25 Jul 2024 11:47:05 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Sat, 02 Aug 2025 07:03:44 GMT
content-type: image/webp
content-length: 38304
server: ebay-proxy-server
x-envoy-upstream-service-time: 8
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c13e
GET

https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/ojsAAOSwLCNlg9JS/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MTYwMFgxNjAw/z/ojsAAOSwLCNlg9JS/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*d%3C%3E%7Fa%28rbpv6612-18f90f05c0c-0x168
x-ebay-c-version: 1.0.0
last-modified: Wed, 20 Dec 2023 17:51:13 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Wed, 16 Oct 2024 13:00:22 GMT
content-type: image/jpeg
content-length: 16003
server: ebay-proxy-server
x-envoy-upstream-service-time: 42
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c151
GET

https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/RUgAAOSwbM1lg9Lm/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MTYwMFgxNjAw/z/RUgAAOSwbM1lg9Lm/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*o3mp%7B%28rbpv6712-18f90effee8-0x128
x-ebay-c-version: 1.0.0
last-modified: Wed, 20 Dec 2023 17:53:42 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Wed, 16 Oct 2024 12:59:58 GMT
content-type: image/jpeg
content-length: 13047
server: ebay-proxy-server
x-envoy-upstream-service-time: 52
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c154
GET

https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/ORgAAOSwE4Flg9LU/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MTYwMFgxNjAw/z/ORgAAOSwE4Flg9LU/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*tthth%28rbpv6601-18f90efdbe3-0x149
x-ebay-c-version: 1.0.0
last-modified: Wed, 20 Dec 2023 17:53:23 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Wed, 16 Oct 2024 12:59:49 GMT
content-type: image/jpeg
content-length: 13745
server: ebay-proxy-server
x-envoy-upstream-service-time: 8
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c155
GET

https://i.ebayimg.com/images/g/j-wAAOSwXORmtH5Y/s-l96.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /images/g/j-wAAOSwXORmtH5Y/s-l96.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*gst%7Do%28rbpv6601-1913118b2a3-0x159
x-ebay-c-version: 1.0.0
last-modified: Thu, 08 Aug 2024 08:14:14 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Fri, 08 Aug 2025 08:26:27 GMT
content-type: image/webp
content-length: 640
server: ebay-proxy-server
x-envoy-upstream-service-time: 7
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c156
GET

https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/wKAAAOSwfCNlg9Ke/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MTYwMFgxNjAw/z/wKAAAOSwfCNlg9Ke/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*%3Ai%3Fld%28rbpv6770-18f90f1b887-0x122
x-ebay-c-version: 1.0.0
last-modified: Wed, 20 Dec 2023 17:52:29 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Wed, 16 Oct 2024 13:01:55 GMT
content-type: image/jpeg
content-length: 8964
server: ebay-proxy-server
x-envoy-upstream-service-time: 24
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c157
GET

https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/1zkAAOSwW-BmrGYp/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MzQwWDM0MA==/z/1zkAAOSwW-BmrGYp/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*auva%3A%28rbpv6770-18f90f05c27-0x12d
x-ebay-c-version: 1.0.0
last-modified: Wed, 20 Dec 2023 17:56:03 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Wed, 16 Oct 2024 13:00:22 GMT
content-type: image/jpeg
content-length: 6563
server: ebay-proxy-server
x-envoy-upstream-service-time: 8
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c15e
GET

https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/LYgAAOSwG5Vlg9Nz/$_1.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MTYwMFgxNjAw/z/LYgAAOSwG5Vlg9Nz/$_1.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*4q%3Eja%28rbpv6602-19124fe1b93-0x14b
x-ebay-c-version: 1.0.0
last-modified: Thu, 01 Aug 2024 16:52:57 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 03 Jan 2025 00:01:58 GMT
content-type: image/jpeg
content-length: 9083
server: ebay-proxy-server
x-envoy-upstream-service-time: 12
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c15d
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/YUQAAOSwDOhk3P80/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/YUQAAOSwDOhk3P80/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*wrk%3Ee%28rbpv6712-1900846698e-0x14f
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:33:57 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 17:09:10 GMT
content-type: image/jpeg
content-length: 59480
server: ebay-proxy-server
x-envoy-upstream-service-time: 22
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d132
GET

https://i.ebayimg.com/00/s/MjcwWDc3MQ==/z/o60AAOSwN~Bk3Pp2/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MQ==/z/o60AAOSwN~Bk3Pp2/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*tid%601%28rbpv6602-19008454beb-0x145
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:36:04 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 17:08:00 GMT
content-type: image/jpeg
content-length: 53070
server: ebay-proxy-server
x-envoy-upstream-service-time: 75
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d137
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/dZ4AAOSwsitk3Pr0/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/dZ4AAOSwsitk3Pr0/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*d%3Ctwt%28rbpv6601-190082d0e32-0x15d
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:39:00 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 16:41:28 GMT
content-type: image/jpeg
content-length: 56842
server: ebay-proxy-server
x-envoy-upstream-service-time: 13
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d140
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/q54AAOSwEkVk3QGh/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/q54AAOSwEkVk3QGh/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*%3A%7Dt%3Ek%28rbpv6612-190083ecc8e-0x15c
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:40:45 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 17:00:51 GMT
content-type: image/jpeg
content-length: 46306
server: ebay-proxy-server
x-envoy-upstream-service-time: 7
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d141
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/Ib8AAOSwTXxk3Puk/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/Ib8AAOSwTXxk3Puk/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*%7B0%60s%3A%28rbpv6601-1900845aad7-0x162
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:42:00 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 17:08:21 GMT
content-type: image/jpeg
content-length: 50875
server: ebay-proxy-server
x-envoy-upstream-service-time: 7
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d142
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/fkEAAOSwo8hk3PwN/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/fkEAAOSwo8hk3PwN/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*skw%3E1%28rbpv6762-1900849bb93-0x138
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:43:06 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 17:12:48 GMT
content-type: image/jpeg
content-length: 56667
server: ebay-proxy-server
x-envoy-upstream-service-time: 8
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d14d
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/jT0AAOSwIX5k3PxY/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/jT0AAOSwIX5k3PxY/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*iwqoi%28rbpv6770-19009798eb0-0x150
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:54:12 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 22:44:39 GMT
content-type: image/jpeg
content-length: 53368
server: ebay-proxy-server
x-envoy-upstream-service-time: 35
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d12e
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/IaMAAOSwBVFk3Pya/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/IaMAAOSwBVFk3Pya/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*nwkdr%28rbpv6602-1900968d40f-0x140
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 17:04:33 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 22:26:23 GMT
content-type: image/jpeg
content-length: 75841
server: ebay-proxy-server
x-envoy-upstream-service-time: 8
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d138
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/CSEAAOSwHs5k3Pz9/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/CSEAAOSwHs5k3Pz9/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*mwbqs%28rbpv6612-19009553ec6-0x176
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:44:44 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 22:05:00 GMT
content-type: image/jpeg
content-length: 88647
server: ebay-proxy-server
x-envoy-upstream-service-time: 19
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d14e
GET

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/ipgAAOSwLilk3P1M/$_57.JPG

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /00/s/MjcwWDc3MA==/z/ipgAAOSwLilk3P1M/$_57.JPG HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*a0d5n%28rbpv6762-19008466992-0x14f
x-ebay-c-version: 1.0.0
last-modified: Wed, 16 Aug 2023 16:46:04 GMT
access-control-allow-origin: *
cache-control: public,max-age=12960000,immutable
expires: Fri, 08 Nov 2024 17:09:10 GMT
content-type: image/jpeg
content-length: 25863
server: ebay-proxy-server
x-envoy-upstream-service-time: 50
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:39 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144739.2918d15d
DNS

secureir.ebaystatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

secureir.ebaystatic.com

IN A

Response

secureir.ebaystatic.com

IN CNAME

slot9428.ebay.com.edgekey.net

slot9428.ebay.com.edgekey.net

IN CNAME

e9428.a.akamaiedge.net

e9428.a.akamaiedge.net

IN A

184.26.133.88
DNS

191.133.26.184.in-addr.arpa

Remote address:

8.8.8.8:53

Request

191.133.26.184.in-addr.arpa

IN PTR

Response

191.133.26.184.in-addr.arpa

IN PTR

a184-26-133-191deploystaticakamaitechnologiescom
DNS

214.223.184.93.in-addr.arpa

Remote address:

8.8.8.8:53

Request

214.223.184.93.in-addr.arpa

IN PTR

Response
DNS

88.133.26.184.in-addr.arpa

Remote address:

8.8.8.8:53

Request

88.133.26.184.in-addr.arpa

IN PTR

Response

88.133.26.184.in-addr.arpa

IN PTR

a184-26-133-88deploystaticakamaitechnologiescom
DNS

8.166.211.66.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.166.211.66.in-addr.arpa

IN PTR

Response

8.166.211.66.in-addr.arpa

IN PTR

#ufespubweb-madronaext-ebay-com-1-80 ufespubwebsvc152tessio
GET

https://secureir.ebaystatic.com/cr/v/c1/jquery/jquery-3.7.0.min.js

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /cr/v/c1/jquery/jquery-3.7.0.min.js HTTP/2.0
host: secureir.ebaystatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript;charset=UTF-8
akamai-grn: 0.250c2d17.1690921599.2a9cc21f
content-encoding: br
last-modified: Tue, 01 Aug 2023 20:26:40 GMT
rlogid: t6q%60uebwh%3D9iptq%60uebwh*d%3C12r%28rbpv670%3D-189b2c80178-0xdf
server: Akamai Resource Optimizer
x-cache-lookup: MISS from include-cache-3:8080
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 27424
cache-control: public, max-age=30986493
expires: Thu, 14 Aug 2025 00:27:11 GMT
date: Tue, 20 Aug 2024 09:05:38 GMT
x-cdn: AKAMAI
strict-transport-security: max-age=31536000
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
akamai-grn: 0.9a1a1202.1724144738.2918b3c0
GET

https://i.ebayimg.com/thumbs/images/g/KHsAAOSwRX9mudPv/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/KHsAAOSwRX9mudPv/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*%3Am%60%7Ds%28rbpv6712-1916afb9230-0x127
x-ebay-c-version: 1.0.0
last-modified: Mon, 12 Aug 2024 09:20:47 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Tue, 19 Aug 2025 14:12:37 GMT
content-type: image/webp
content-length: 17416
server: ebay-proxy-server
x-envoy-upstream-service-time: 74
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918b5c0
GET

https://i.ebayimg.com/thumbs/images/g/5t8AAOSwaaRmw-qQ/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/5t8AAOSwaaRmw-qQ/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*%60sqk7%28rbpv6762-1914aa41d99-0x15d
x-ebay-c-version: 1.0.0
last-modified: Mon, 12 Aug 2024 15:30:33 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 13 Aug 2025 07:29:15 GMT
content-type: image/webp
content-length: 10794
server: ebay-proxy-server
x-envoy-upstream-service-time: 6
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918b6e1
GET

https://i.ebayimg.com/thumbs/images/g/MggAAOSwL4VmutNZ/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/MggAAOSwL4VmutNZ/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*7kwjr%28rbpv6762-1915edd6fa1-0x14a
x-ebay-c-version: 1.0.0
last-modified: Fri, 16 Aug 2024 13:36:45 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Sun, 17 Aug 2025 05:44:16 GMT
content-type: image/webp
content-length: 10342
server: ebay-proxy-server
x-envoy-upstream-service-time: 7
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918b6e2
GET

https://i.ebayimg.com/thumbs/images/g/tmkAAOSwPhFmv~6u/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/tmkAAOSwPhFmv~6u/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*gv0o%3A%28rbpv6601-19150c44c8f-0x145
x-ebay-c-version: 1.0.0
last-modified: Wed, 14 Aug 2024 11:08:56 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Thu, 14 Aug 2025 12:02:07 GMT
content-type: image/webp
content-length: 9758
server: ebay-proxy-server
x-envoy-upstream-service-time: 37
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918b6e3
GET

https://i.ebayimg.com/thumbs/images/g/EYYAAOSwVXNmvJBJ/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/EYYAAOSwVXNmvJBJ/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*sfwoi%28rbpv6602-1916e9a44a1-0x130
x-ebay-c-version: 1.0.0
last-modified: Mon, 19 Aug 2024 12:59:59 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 07:04:49 GMT
content-type: image/webp
content-length: 4026
server: ebay-proxy-server
x-envoy-upstream-service-time: 12
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918b6df
GET

https://i.ebayimg.com/thumbs/images/g/gtUAAOSwBXxk5jXw/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/gtUAAOSwBXxk5jXw/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*hnqw6%28rbpv6762-18a6ecc5645-0x12d
x-ebay-c-version: 1.0.0
last-modified: Wed, 23 Aug 2023 16:38:07 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Fri, 06 Sep 2024 08:39:59 GMT
content-type: image/webp
content-length: 6486
server: ebay-proxy-server
x-envoy-upstream-service-time: 52
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0cc
GET

https://i.ebayimg.com/thumbs/images/g/DxoAAOSwtEtmOU1l/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/DxoAAOSwtEtmOU1l/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*ifbar%28rbpv6612-1914b27f9b6-0x136
x-ebay-c-version: 1.0.0
last-modified: Mon, 06 May 2024 09:36:37 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 13 Aug 2025 09:53:16 GMT
content-type: image/webp
content-length: 5688
server: ebay-proxy-server
x-envoy-upstream-service-time: 30
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0ce
GET

https://i.ebayimg.com/thumbs/images/g/TFgAAOSwALVfUaI3/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/TFgAAOSwALVfUaI3/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*k%3C%60%7Dp%28rbpv6770-18aa809956b-0x16f
x-ebay-c-version: 1.0.0
last-modified: Thu, 03 Sep 2020 14:11:02 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Tue, 17 Sep 2024 11:25:15 GMT
content-type: image/webp
content-length: 4462
server: ebay-proxy-server
x-envoy-upstream-service-time: 72
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0cf
GET

https://i.ebayimg.com/thumbs/images/g/BLAAAOSwPy9lNz~3/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/BLAAAOSwPy9lNz~3/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*o1%3Eou%28rbpv6762-1912ba2bde0-0x138
x-ebay-c-version: 1.0.0
last-modified: Mon, 23 Oct 2023 15:54:31 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Thu, 07 Aug 2025 06:59:31 GMT
content-type: image/webp
content-length: 2184
server: ebay-proxy-server
x-envoy-upstream-service-time: 60
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0d0
GET

https://i.ebayimg.com/thumbs/images/g/0IEAAOSwDaRmdb13/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/0IEAAOSwDaRmdb13/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*%3Bu%3Ejk%28rbpv6712-19144119bbf-0x131
x-ebay-c-version: 1.0.0
last-modified: Fri, 21 Jun 2024 17:50:45 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Tue, 12 Aug 2025 00:51:30 GMT
content-type: image/webp
content-length: 4640
server: ebay-proxy-server
x-envoy-upstream-service-time: 53
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0d1
GET

https://i.ebayimg.com/thumbs/images/g/KVkAAOSww1xlNz-S/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/KVkAAOSww1xlNz-S/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*r1kds%28rbpv6601-1914414f1c3-0x156
x-ebay-c-version: 1.0.0
last-modified: Thu, 24 Oct 2019 17:21:28 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Tue, 12 Aug 2025 00:55:09 GMT
content-type: image/webp
content-length: 2534
server: ebay-proxy-server
x-envoy-upstream-service-time: 233
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0e2
GET

https://i.ebayimg.com/thumbs/images/g/B9kAAOSw9xJdsoZZ/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/B9kAAOSw9xJdsoZZ/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*571ot%28rbpv6602-19144119b33-0x157
x-ebay-c-version: 1.0.0
last-modified: Tue, 11 Jun 2024 16:48:10 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Tue, 12 Aug 2025 00:51:30 GMT
content-type: image/webp
content-length: 10366
server: ebay-proxy-server
x-envoy-upstream-service-time: 60
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0e3
GET

https://i.ebayimg.com/thumbs/images/g/zi4AAOSw7ABmaSiL/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/zi4AAOSw7ABmaSiL/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*%7Brqvr%28rbpv6601-1916d1df107-0x137
x-ebay-c-version: 1.0.0
last-modified: Sun, 18 Aug 2024 14:57:25 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 00:09:24 GMT
content-type: image/webp
content-length: 13484
server: ebay-proxy-server
x-envoy-upstream-service-time: 30
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0e4
GET

https://i.ebayimg.com/thumbs/images/g/vfoAAOSw1K9mwrSV/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/vfoAAOSw1K9mwrSV/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*5fbem%28rbpv6612-19037f3e86a-0x16a
x-ebay-c-version: 1.0.0
last-modified: Mon, 23 Oct 2023 15:52:50 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Fri, 20 Jun 2025 23:20:50 GMT
content-type: image/webp
content-length: 16962
server: ebay-proxy-server
x-envoy-upstream-service-time: 14
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0d2
GET

https://i.ebayimg.com/thumbs/images/g/5e4AAOSw~NNmxDgI/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/5e4AAOSw~NNmxDgI/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*dvrir%28rbpv6601-1916e8602f3-0x128
x-ebay-c-version: 1.0.0
last-modified: Mon, 19 Aug 2024 18:30:32 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 06:42:42 GMT
content-type: image/webp
content-length: 13296
server: ebay-proxy-server
x-envoy-upstream-service-time: 6
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0e5
GET

https://i.ebayimg.com/thumbs/images/g/mHMAAOSweBRmwq9m/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/mHMAAOSweBRmwq9m/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*pf%7E%3Ft%28rbpv6602-1916d2643c3-0x153
x-ebay-c-version: 1.0.0
last-modified: Sun, 18 Aug 2024 14:37:21 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 00:18:30 GMT
content-type: image/webp
content-length: 16810
server: ebay-proxy-server
x-envoy-upstream-service-time: 42
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0fc
GET

https://i.ebayimg.com/thumbs/images/g/BboAAOSwwTpmwq~h/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/BboAAOSwwTpmwq~h/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*63nqq%28rbpv6762-1916d251458-0x12f
x-ebay-c-version: 1.0.0
last-modified: Sun, 18 Aug 2024 14:59:44 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 00:17:12 GMT
content-type: image/webp
content-length: 14312
server: ebay-proxy-server
x-envoy-upstream-service-time: 25
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0fd
GET

https://i.ebayimg.com/thumbs/images/g/G6gAAOSwpiNmwrUg/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/G6gAAOSwpiNmwrUg/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*gi1m1%28rbpv674%3C-1916d2984e7-0x13e
x-ebay-c-version: 1.0.0
last-modified: Sun, 18 Aug 2024 14:52:45 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 00:22:03 GMT
content-type: image/webp
content-length: 16552
server: ebay-proxy-server
x-envoy-upstream-service-time: 314
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0ff
GET

https://i.ebayimg.com/thumbs/images/g/b5cAAOSwtJBmwrOv/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/b5cAAOSwtJBmwrOv/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9iptq4%7Cjfaofpse*%60%3D%7Ect%28rbpv6762-1916d22ca24-0x134
x-ebay-c-version: 1.0.0
last-modified: Sun, 18 Aug 2024 14:50:10 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 00:14:42 GMT
content-type: image/webp
content-length: 9858
server: ebay-proxy-server
x-envoy-upstream-service-time: 25
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c112
GET

https://i.ebayimg.com/thumbs/images/g/R4cAAOSw-w5mwrN-/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/R4cAAOSw-w5mwrN-/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*5vdv%3B%28rbpv6602-1916d1cf4f5-0x151
x-ebay-c-version: 1.0.0
last-modified: Sun, 18 Aug 2024 14:53:35 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 00:08:20 GMT
content-type: image/webp
content-length: 13268
server: ebay-proxy-server
x-envoy-upstream-service-time: 55
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0fe
GET

https://i.ebayimg.com/thumbs/images/g/amQAAOSw5SNmwrLi/s-l500.webp

msedge.exe

Remote address:

184.26.133.88:443

Request

GET /thumbs/images/g/amQAAOSw5SNmwrLi/s-l500.webp HTTP/2.0
host: i.ebayimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.ebay.com.au
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

rlogid: t6q4%7Cjfaofpse%3D9vjdq4%7Cjfaofpse*%3Avn%7D5%28rbpv6775-1916d1cf309-0x155
x-ebay-c-version: 1.0.0
last-modified: Sun, 18 Aug 2024 14:35:17 GMT
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
expires: Wed, 20 Aug 2025 00:08:19 GMT
content-type: image/webp
content-length: 18808
server: ebay-proxy-server
x-envoy-upstream-service-time: 16
x-ebay-pop-id: UFES2-LHR-zoe-anycast
date: Tue, 20 Aug 2024 09:05:38 GMT
strict-transport-security: max-age=31536000
x-cdn: AKAMAI
akamai-grn: 0.9a1a1202.1724144738.2918c0fb
DNS

rover.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

rover.ebay.com.au

IN A

Response

rover.ebay.com.au

IN CNAME

slot9428.ebay.com.edgekey.net

slot9428.ebay.com.edgekey.net

IN CNAME

e9428.a.akamaiedge.net

e9428.a.akamaiedge.net

IN A

184.26.133.88
DNS

pages.ebay.com

msedge.exe

Remote address:

8.8.8.8:53

Request

pages.ebay.com

IN A

Response

pages.ebay.com

IN CNAME

slot11847.ebay.com.edgekey.net

slot11847.ebay.com.edgekey.net

IN CNAME

e11847.a.akamaiedge.net

e11847.a.akamaiedge.net

IN A

184.26.133.191
DNS

www.ebayadservices.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.ebayadservices.com

IN A

Response

www.ebayadservices.com

IN CNAME

andes.g.ebay.com

andes.g.ebay.com

IN A

66.211.162.160

andes.g.ebay.com

IN A

66.211.162.160
GET

https://www.ebayadservices.com/marketingtracking/v1/sync?guid=6f08dc9c1910acf39cc05acaffff2dfa&uid=

msedge.exe

Remote address:

66.211.162.160:443

Request

GET /marketingtracking/v1/sync?guid=6f08dc9c1910acf39cc05acaffff2dfa&uid= HTTP/1.1
Host: www.ebayadservices.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.ebay.com.au/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

rlogid: t6baubqsodffiiw%3F%3Cfgvcuuleb%60jhs.0%3E1egd2%3A%3Dd*mfkok-1916f08e4bf-0x2360
set-cookie: adguid=e4f6be6508f34702940c1f8fc071b06c; Path=/; Max-Age=7776000; Expires=Mon, 18 Nov 2024 09:05:39 GMT; Secure; HttpOnly; SameSite=None
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
cache-control: private, no-cache
pragma: no-cache
content-type: image/gif
content-length: 42
date: Tue, 20 Aug 2024 09:05:38 GMT
x-envoy-upstream-service-time: 23
x-ebay-mesh-server-pod-ip: 10.84.132.17
x-ebay-mesh-server-duration: 2
x-ebay-mesh-server-start: 2024-08-20T09:05:39.519Z
x-ebay-mesh-server-response-flag: -
server: ebay-proxy-server
x-ebay-mesh-gw-name: istioingressgateway-production-lvsaz04-03
x-ebay-mesh-gw-pod-name: istio-ingressgateway-03-9f5849599-cppbm
x-ebay-mesh-gw-pod-ip: 10.115.154.165
x-ebay-mesh-gw-upstream-duration: 3
x-ebay-mesh-gw-duration: 4
x-ebay-mesh-gw-start: 2024-08-20T09:05:39.518Z
x-ebay-mesh-gw-response-flag: -
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBLVSAZ04
DNS

devicebind.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

devicebind.ebay.com.au

IN A

Response

devicebind.ebay.com.au

IN CNAME

signin.g.ebay.com

signin.g.ebay.com

IN A

209.140.129.87
POST

https://devicebind.ebay.com.au/signin/sub/log

msedge.exe

Remote address:

209.140.129.87:443

Request

POST /signin/sub/log HTTP/1.1
Host: devicebind.ebay.com.au
Connection: keep-alive
Content-Length: 589
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://devicebind.ebay.com.au
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: empty
Referer: https://devicebind.ebay.com.au/signin/sub/tt.html?st=1724144738962&f=53000&e=0&pageid=4375194&rec=0&sc=0&sm=4&sig=wy1lwhGNuIJXWiz42H1hwOfh07TXWgpFroNdvPEUQnsctoHvrLkFRzPJvrCn%2BDWbGPvKNzHBNoHWow0zzjfDDw%3D%3D
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=; s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==; __uzma=da701079-ca77-4b45-801b-49c476c1ba12; __uzmb=1724144738; __uzmc=704381016017; __uzmd=1724144738; __uzme=7189; __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10; bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAr/AU2ORAQAAROMIbxi5cm6lVG2I7hWwHc3Eld69kYV75X0o/ZTSg8qKRtROMUcOXK/ffoxICNJv9Cdy6IO1xaXojU0Rtop5i+t/Lib2YrPE8kNu+mfAT3Dh1jndiTHFBH6zRog/l9eTC3Nh3RYeqkp4iMFYYGHLEcCnyH14mOq/F0ZSbTeLX0FFZfoCQ79dvO6/yKD7+wlww3ziqNxHPV2Vlt0etEnHYjSleCRCQgWVWyXFkyZZExqsOg==~1; AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJvcHRPdXQlMjIlM0FmYWxzZSU3RA==; utag_main__sn=1; utag_main__se=1%3Bexp-session; utag_main__ss=1%3Bexp-session; utag_main__st=1724146538523%3Bexp-session; utag_main_ses_id=1724144738523%3Bexp-session; utag_main__pn=1%3Bexp-session; dp1=bbl/GB6a86c363^; ebay=%5Esbf%3D%23000000%5E; nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+NFQzRSMEFOAMoAIGqGw2M2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNrNLXp6x1yUCrq2E5hvbqtnrn0x5AE

Response

HTTP/1.1 200 OK

x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-security-policy: connect-src 'self' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au data: *.quantummetric.com *.googlesyndication.com wss://127.0.0.1:* *.amplitude.com *.gstatic.com *.doubleclick.net *.ravelin.click *.ravelin.com *.ebay-us.com *.cloudfront.net *.bluekai.com *.forter.com *.google-analytics.com *.perfdrive.com *.google.com blob: *.akamaihd.net *.googleapis.com *.analytics.google.com *.ebayrtm.com *.ucweb.com *.trongrid.io *.glance.net *.facebook.net *.puretheweb.com *.online-metrix.net; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: data: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.googlesyndication.com *.ebaystatic.cn *.ebay-us.com *.forter.com *.paypal.com *.ebayrtm.com *.quantummetric.com *.doubleclick.net *.cloudfront.net *.googletagservices.com *.google-analytics.com *.ucweb.com *.googletagmanager.com *.akamaihd.net *.fidoapi.com *.google.com *.cloudflare.com *.facebook.net *.googleapis.com *.hcaptcha.com *.online-metrix.net puffin: brave: edge:; upgrade-insecure-requests; frame-ancestors 'self' *.ebay.com *.ebay.com.au *.ebay.au; default-src 'self' 'unsafe-inline' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.forter.com *.paypal.com *.gstatic.com *.ebayimg.com *.ebayrtm.com *.googlesyndication.com wss://127.0.0.1:* *.ebay-us.com *.cloudfront.net *.google-analytics.com *.online-metrix.net *.google.com *.doubleclick.net *.bluekai.com *.fontawesome.com *.googleusercontent.com *.bootstrapcdn.com *.cloudflare.com *.googletagmanager.com *.akamaihd.net *.googleapis.com *.ucweb.com *.facebook.net *.reich-web.com *.auctiva.com *.inkfrog.com *.puretheweb.com *.ebaystatic.cn *.hcaptcha.com; report-uri https://monitor.ebay.com/csp-report/sgninui/SignInTelemetry2?id=3196165603087501984&rid=t6pbhnmpo%3D9iptpbhnmpo*n70w6(rbpv670%3D-1916f08e7bb-0x1203#pd
content-type: application/json; charset=utf-8
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: dp1=bbl/GB6a86c364^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:40 GMT; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+RFQzRSMEFOAMoAIGqGw2Q2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNsNZj25tFWRqFBkntxBsuab0yt1irD; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:40 GMT; HttpOnly; Secure
rlogid: t6pbhnmpo%3D9iptpbhnmpo*n70w6(rbpv670%3D-1916f08e7bb-0x1203
vary: Accept-Encoding
date: Tue, 20 Aug 2024 09:05:40 GMT
x-envoy-upstream-service-time: 63
server: ebay-proxy-server
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBLVSAZ01
transfer-encoding: chunked
GET

https://devicebind.ebay.com.au/signin/sub/tt.html?st=1724144738962&f=53000&e=0&pageid=4375194&rec=0&sc=0&sm=4&sig=wy1lwhGNuIJXWiz42H1hwOfh07TXWgpFroNdvPEUQnsctoHvrLkFRzPJvrCn%2BDWbGPvKNzHBNoHWow0zzjfDDw%3D%3D

msedge.exe

Remote address:

209.140.129.87:443

Request

GET /signin/sub/tt.html?st=1724144738962&f=53000&e=0&pageid=4375194&rec=0&sc=0&sm=4&sig=wy1lwhGNuIJXWiz42H1hwOfh07TXWgpFroNdvPEUQnsctoHvrLkFRzPJvrCn%2BDWbGPvKNzHBNoHWow0zzjfDDw%3D%3D HTTP/1.1
Host: devicebind.ebay.com.au
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://www.ebay.com.au/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=; s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==; __uzma=da701079-ca77-4b45-801b-49c476c1ba12; __uzmb=1724144738; __uzmc=704381016017; __uzmd=1724144738; __uzme=7189; __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10; dp1=bbl/GB6a86c362^; ebay=%5Esbf%3D%23100000%5E; nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMyEI+KgUOMSAB6NTmZPBQQix7H4j; bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAr/AU2ORAQAAROMIbxi5cm6lVG2I7hWwHc3Eld69kYV75X0o/ZTSg8qKRtROMUcOXK/ffoxICNJv9Cdy6IO1xaXojU0Rtop5i+t/Lib2YrPE8kNu+mfAT3Dh1jndiTHFBH6zRog/l9eTC3Nh3RYeqkp4iMFYYGHLEcCnyH14mOq/F0ZSbTeLX0FFZfoCQ79dvO6/yKD7+wlww3ziqNxHPV2Vlt0etEnHYjSleCRCQgWVWyXFkyZZExqsOg==~1

Response

HTTP/1.1 200 OK

x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-security-policy: connect-src 'self' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au data: *.quantummetric.com *.googlesyndication.com wss://127.0.0.1:* *.amplitude.com *.gstatic.com *.doubleclick.net *.ravelin.click *.ravelin.com *.ebay-us.com *.cloudfront.net *.bluekai.com *.forter.com *.google-analytics.com *.perfdrive.com *.google.com blob: *.akamaihd.net *.googleapis.com *.analytics.google.com *.ebayrtm.com *.ucweb.com *.trongrid.io *.glance.net *.facebook.net *.puretheweb.com *.online-metrix.net; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: data: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.googlesyndication.com *.ebaystatic.cn *.ebay-us.com *.forter.com *.paypal.com *.ebayrtm.com *.quantummetric.com *.doubleclick.net *.cloudfront.net *.googletagservices.com *.google-analytics.com *.ucweb.com *.googletagmanager.com *.akamaihd.net *.fidoapi.com *.google.com *.cloudflare.com *.facebook.net *.googleapis.com *.hcaptcha.com *.online-metrix.net puffin: brave: edge:; upgrade-insecure-requests; frame-ancestors 'self' *.ebay.com *.ebay.com.au *.ebay.au; default-src 'self' 'unsafe-inline' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.forter.com *.paypal.com *.gstatic.com *.ebayimg.com *.ebayrtm.com *.googlesyndication.com wss://127.0.0.1:* *.ebay-us.com *.cloudfront.net *.google-analytics.com *.online-metrix.net *.google.com *.doubleclick.net *.bluekai.com *.fontawesome.com *.googleusercontent.com *.bootstrapcdn.com *.cloudflare.com *.googletagmanager.com *.akamaihd.net *.googleapis.com *.ucweb.com *.facebook.net *.reich-web.com *.auctiva.com *.inkfrog.com *.puretheweb.com *.ebaystatic.cn *.hcaptcha.com; report-uri https://monitor.ebay.com/csp-report/sgninui/subtleCryptoJs?id=3196165603087501984&rid=t6pbhnmpo%3D9iptpbhnmpo*%3Aav%3Et(rbpv6762-1916f08e67d-0x205#pd
content-type: text/html; charset=utf-8
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: dp1=bbl/GB6a86c363^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:40 GMT; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+NFQzRSMEFOAMoAIGqGw2M2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNrNLXp6x1yUCrq2E5hvbqtnrn0x5AE; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:40 GMT; HttpOnly; Secure
rlogid: t6pbhnmpo%3D9iptpbhnmpo*%3Aav%3Et(rbpv6762-1916f08e67d-0x205
vary: Accept-Encoding
content-encoding: gzip
date: Tue, 20 Aug 2024 09:05:40 GMT
x-envoy-upstream-service-time: 81
server: ebay-proxy-server
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBLVSAZ01
transfer-encoding: chunked
POST

https://devicebind.ebay.com.au/signin/sub/log

msedge.exe

Remote address:

209.140.129.87:443

Request

POST /signin/sub/log HTTP/1.1
Host: devicebind.ebay.com.au
Connection: keep-alive
Content-Length: 589
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://devicebind.ebay.com.au
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: empty
Referer: https://devicebind.ebay.com.au/signin/sub/tt.html?st=1724144738962&f=53000&e=0&pageid=4375194&rec=0&sc=0&sm=4&sig=wy1lwhGNuIJXWiz42H1hwOfh07TXWgpFroNdvPEUQnsctoHvrLkFRzPJvrCn%2BDWbGPvKNzHBNoHWow0zzjfDDw%3D%3D
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=; s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==; __uzma=da701079-ca77-4b45-801b-49c476c1ba12; __uzmb=1724144738; __uzmc=704381016017; __uzmd=1724144738; __uzme=7189; __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10; bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAr/AU2ORAQAAROMIbxi5cm6lVG2I7hWwHc3Eld69kYV75X0o/ZTSg8qKRtROMUcOXK/ffoxICNJv9Cdy6IO1xaXojU0Rtop5i+t/Lib2YrPE8kNu+mfAT3Dh1jndiTHFBH6zRog/l9eTC3Nh3RYeqkp4iMFYYGHLEcCnyH14mOq/F0ZSbTeLX0FFZfoCQ79dvO6/yKD7+wlww3ziqNxHPV2Vlt0etEnHYjSleCRCQgWVWyXFkyZZExqsOg==~1; AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJvcHRPdXQlMjIlM0FmYWxzZSU3RA==; utag_main__sn=1; utag_main__se=1%3Bexp-session; utag_main__ss=1%3Bexp-session; utag_main__st=1724146538523%3Bexp-session; utag_main_ses_id=1724144738523%3Bexp-session; utag_main__pn=1%3Bexp-session; dp1=bbl/GB6a86c363^; ebay=%5Esbf%3D%23000000%5E; nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+NFQzRSMEFOAMoAIGqGw2M2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNrNLXp6x1yUCrq2E5hvbqtnrn0x5AE

Response

HTTP/1.1 200 OK

x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-security-policy: connect-src 'self' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au data: *.quantummetric.com *.googlesyndication.com wss://127.0.0.1:* *.amplitude.com *.gstatic.com *.doubleclick.net *.ravelin.click *.ravelin.com *.ebay-us.com *.cloudfront.net *.bluekai.com *.forter.com *.google-analytics.com *.perfdrive.com *.google.com blob: *.akamaihd.net *.googleapis.com *.analytics.google.com *.ebayrtm.com *.ucweb.com *.trongrid.io *.glance.net *.facebook.net *.puretheweb.com *.online-metrix.net; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: data: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.googlesyndication.com *.ebaystatic.cn *.ebay-us.com *.forter.com *.paypal.com *.ebayrtm.com *.quantummetric.com *.doubleclick.net *.cloudfront.net *.googletagservices.com *.google-analytics.com *.ucweb.com *.googletagmanager.com *.akamaihd.net *.fidoapi.com *.google.com *.cloudflare.com *.facebook.net *.googleapis.com *.hcaptcha.com *.online-metrix.net puffin: brave: edge:; upgrade-insecure-requests; frame-ancestors 'self' *.ebay.com *.ebay.com.au *.ebay.au; default-src 'self' 'unsafe-inline' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.forter.com *.paypal.com *.gstatic.com *.ebayimg.com *.ebayrtm.com *.googlesyndication.com wss://127.0.0.1:* *.ebay-us.com *.cloudfront.net *.google-analytics.com *.online-metrix.net *.google.com *.doubleclick.net *.bluekai.com *.fontawesome.com *.googleusercontent.com *.bootstrapcdn.com *.cloudflare.com *.googletagmanager.com *.akamaihd.net *.googleapis.com *.ucweb.com *.facebook.net *.reich-web.com *.auctiva.com *.inkfrog.com *.puretheweb.com *.ebaystatic.cn *.hcaptcha.com; report-uri https://monitor.ebay.com/csp-report/sgninui/SignInTelemetry2?id=3196165603087501984&rid=t6pbhnmpo%3D9iptpbhnmpo*dfd%3E5(rbpv670%3D-1916f08e7c2-0x109#pd
content-type: application/json; charset=utf-8
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: dp1=bbl/GB6a86c364^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:40 GMT; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+RFQzRSMEFOAMoAIGqGw2Q2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNsNZj25tFWRqFBkntxBsuab0yt1irD; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:05:40 GMT; HttpOnly; Secure
rlogid: t6pbhnmpo%3D9iptpbhnmpo*dfd%3E5(rbpv670%3D-1916f08e7c2-0x109
vary: Accept-Encoding
date: Tue, 20 Aug 2024 09:05:40 GMT
x-envoy-upstream-service-time: 91
server: ebay-proxy-server
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBLVSAZ01
transfer-encoding: chunked
DNS

mkttag.ebay.com

msedge.exe

Remote address:

8.8.8.8:53

Request

mkttag.ebay.com

IN A

Response

mkttag.ebay.com

IN CNAME

slot11847.ebay.com.edgekey.net

slot11847.ebay.com.edgekey.net

IN CNAME

e11847.a.akamaiedge.net

e11847.a.akamaiedge.net

IN A

184.26.133.191
DNS

backstory.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

backstory.ebay.com.au

IN A

Response

backstory.ebay.com.au

IN CNAME

autotrack.ebaycdn.net

autotrack.ebaycdn.net

IN CNAME

autotrack.ebay.com.edgekey.net

autotrack.ebay.com.edgekey.net

IN CNAME

e189811.a.akamaiedge.net

e189811.a.akamaiedge.net

IN A

104.117.183.107

e189811.a.akamaiedge.net

IN A

104.117.183.98

e189811.a.akamaiedge.net

IN A

104.117.183.80

e189811.a.akamaiedge.net

IN A

104.117.183.106

e189811.a.akamaiedge.net

IN A

104.117.183.81

e189811.a.akamaiedge.net

IN A

104.117.183.89

e189811.a.akamaiedge.net

IN A

104.117.183.99

e189811.a.akamaiedge.net

IN A

104.117.183.114

e189811.a.akamaiedge.net

IN A

104.117.183.75
DNS

234.75.250.142.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

234.75.250.142.in-addr.arpa

IN PTR

Response

234.75.250.142.in-addr.arpa

IN PTR

par10s41-in-f101e100net
DNS

sr-client-cfg.amplitude.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sr-client-cfg.amplitude.com

IN A

Response

sr-client-cfg.amplitude.com

IN A

143.204.176.49

sr-client-cfg.amplitude.com

IN A

143.204.176.53

sr-client-cfg.amplitude.com

IN A

143.204.176.61

sr-client-cfg.amplitude.com

IN A

143.204.176.23
DNS

57.211.222.173.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

57.211.222.173.in-addr.arpa

IN PTR

Response

57.211.222.173.in-addr.arpa

IN PTR

a173-222-211-57deploystaticakamaitechnologiescom
GET

https://backstory.ebay.com.au/customer/v1/bs_img_service?pld=%5B%7B%22guid%22%3A%226f08dc9c1910acf39cc05acaffff2dfa%22%2C%22siteId%22%3A15%2C%22eventFamily%22%3A%22AUTO_TRACKING%22%2C%22agentVersion%22%3A%222.6.2%22%2C%22trackable%22%3A%7B%22trackableId%22%3A%22ba7dee71-be54-4687-8530-352ed3b6eb6d%22%2C%22parentTrackableId%22%3Anull%2C%22instanceId%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22screenId%22%3A%22238c6c05-c067-4607-8066-5e4f210d69b3%22%2C%22description%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22entityId%22%3A%224375194%22%2C%22entityType%22%3A%22Page%22%7D%2C%22activity%22%3A%7B%22timestamp%22%3A1724144738345%2C%22category%22%3A%22Impression%22%2C%22type%22%3A%22VIEW.PAGE_LOAD%22%2C%22referer%22%3A%22%22%2C%22details%22%3A%7B%22openTime%22%3A%221724144735912%22%2C%22history%22%3A%221%22%2C%22isTabSwitch%22%3Afalse%2C%22pvKey%22%3A%22e89e954b-7e1e-4a24-86e7-98c47fc19ed1%22%2C%22prevPageId%22%3Anull%2C%22ePageId%22%3A%224375194%22%2C%22nPageId%22%3A%224432023%22%2C%22ciid%22%3A%22ACNzgfhE*%22%7D%2C%22viewportWidth%22%3A1280%2C%22viewportHeight%22%3A609%7D%2C%22context%22%3A%7B%22utcOffset%22%3A0%2C%22userLang%22%3A%22en-US%22%2C%22userAgent%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F92.0.4515.131%20Safari%2F537.36%20Edg%2F92.0.902.67%22%2C%22screenWidth%22%3A1280%2C%22screenHeight%22%3A720%2C%22others%22%3A%7B%7D%7D%7D%5D&ct=1724144738346

msedge.exe

Remote address:

104.117.183.107:443

Request

GET /customer/v1/bs_img_service?pld=%5B%7B%22guid%22%3A%226f08dc9c1910acf39cc05acaffff2dfa%22%2C%22siteId%22%3A15%2C%22eventFamily%22%3A%22AUTO_TRACKING%22%2C%22agentVersion%22%3A%222.6.2%22%2C%22trackable%22%3A%7B%22trackableId%22%3A%22ba7dee71-be54-4687-8530-352ed3b6eb6d%22%2C%22parentTrackableId%22%3Anull%2C%22instanceId%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22screenId%22%3A%22238c6c05-c067-4607-8066-5e4f210d69b3%22%2C%22description%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22entityId%22%3A%224375194%22%2C%22entityType%22%3A%22Page%22%7D%2C%22activity%22%3A%7B%22timestamp%22%3A1724144738345%2C%22category%22%3A%22Impression%22%2C%22type%22%3A%22VIEW.PAGE_LOAD%22%2C%22referer%22%3A%22%22%2C%22details%22%3A%7B%22openTime%22%3A%221724144735912%22%2C%22history%22%3A%221%22%2C%22isTabSwitch%22%3Afalse%2C%22pvKey%22%3A%22e89e954b-7e1e-4a24-86e7-98c47fc19ed1%22%2C%22prevPageId%22%3Anull%2C%22ePageId%22%3A%224375194%22%2C%22nPageId%22%3A%224432023%22%2C%22ciid%22%3A%22ACNzgfhE*%22%7D%2C%22viewportWidth%22%3A1280%2C%22viewportHeight%22%3A609%7D%2C%22context%22%3A%7B%22utcOffset%22%3A0%2C%22userLang%22%3A%22en-US%22%2C%22userAgent%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F92.0.4515.131%20Safari%2F537.36%20Edg%2F92.0.902.67%22%2C%22screenWidth%22%3A1280%2C%22screenHeight%22%3A720%2C%22others%22%3A%7B%7D%7D%7D%5D&ct=1724144738346 HTTP/2.0
host: backstory.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: dp1=bbl/GB6a86c362^
cookie: ebay=%5Esbf%3D%23100000%5E
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+JFQzRSMEFOAMoAIGqGw2I2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNqMyEI+KgUOMSAB6NTmZPBQQix7H4j
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAr/AU2ORAQAAROMIbxi5cm6lVG2I7hWwHc3Eld69kYV75X0o/ZTSg8qKRtROMUcOXK/ffoxICNJv9Cdy6IO1xaXojU0Rtop5i+t/Lib2YrPE8kNu+mfAT3Dh1jndiTHFBH6zRog/l9eTC3Nh3RYeqkp4iMFYYGHLEcCnyH14mOq/F0ZSbTeLX0FFZfoCQ79dvO6/yKD7+wlww3ziqNxHPV2Vlt0etEnHYjSleCRCQgWVWyXFkyZZExqsOg==~1

Response

HTTP/2.0 200

rlogid: t6bprhwwgdh%3F%3Ctofgrwjrubfm*ubn%3Fs%28rbpv6770-1916f08e667-0x23cd
content-disposition: INLINE;filename="trk.gif"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-type: image/gif
content-length: 35
x-envoy-upstream-service-time: 21
server: ebay-proxy-server
x-ebay-pop-id: SLBSLCAZ01
expires: Tue, 20 Aug 2024 09:05:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:05:40 GMT
strict-transport-security: max-age=31536000
POST

https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724144779982

msedge.exe

Remote address:

104.117.183.107:443

Request

POST /customer/v1/customer_service?ct=1724144779982 HTTP/2.0
host: backstory.ebay.com.au
content-length: 16990
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: ebay=%5Esbf%3D%23000000%5E
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NDczOTA3OCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMiUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMSU3RA==
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: dp1=bbl/GB6a86c368^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+hFQzRSMEFOAMoAIGqGw2g2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNwNh1EJ00pXkkmUdTN+YQrpZeWDK5k
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAlDGU2ORAQAA8/gIbxh63GKvZEzW5qDRSJobWCtXpevfEuxoLo/Mv5BKxpPOuIvTXaws/7VG17g3DFNUayPNzHxsHxn2FdtJoqHw7pVCetK+PGQRsrPdD1O/23ct3OanUKrzBhCaaFP2yoCNShY0E4iruPNZrTU10ox8k1sdeDVi2+4RGwcryVRQNzvyrsuv5MLM2WVRLFlTet2OEX+uPNNy1KINkQhxpejvFJGe9gW1QPjczOpFFXfzIw==~1

Response

HTTP/2.0 200

rlogid: t6bprhwwgdh%3F%3Ckuvgrwjrubfm*%7Bb%7Cig%28rbpv6712-1916f098848-0x2734
content-disposition: INLINE;filename="trk.gif"
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept, authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
content-type: image/gif
content-length: 35
x-envoy-upstream-service-time: 20
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
expires: Tue, 20 Aug 2024 09:06:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:06:21 GMT
strict-transport-security: max-age=31536000
OPTIONS

https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

msedge.exe

Remote address:

143.204.176.49:443

Request

OPTIONS /config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay HTTP/2.0
host: sr-client-cfg.amplitude.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://www.ebay.com.au
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Tue, 20 Aug 2024 09:05:40 GMT
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
x-cache: Miss from cloudfront
via: 1.1 716cb04032c353fd28e60f55870a35f4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-C1
x-amz-cf-id: o2reZQ2wU52cPHQYy8dzBTmgkZkWe83GonAWngzOeVDbG9SHVb5__g==
GET

https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

msedge.exe

Remote address:

143.204.176.49:443

Request

GET /config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay HTTP/2.0
host: sr-client-cfg.amplitude.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: */*
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
origin: https://www.ebay.com.au
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-length: 190
date: Tue, 20 Aug 2024 09:04:54 GMT
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
cache-control: public, max-age=60, s-maxage=60, stale-if-error=86400, stale-while-revalidate=600
x-cache: Hit from cloudfront
via: 1.1 716cb04032c353fd28e60f55870a35f4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-C1
x-amz-cf-id: Ycb-zPvmUi0AohGK2ATkqbXVB47DJG6hbQkok9RL3tOIzGEAxIODCw==
age: 46
DNS

dynamic.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

dynamic.criteo.com

IN A

Response

dynamic.criteo.com

IN CNAME

dynamic.nl3.vip.prod.criteo.com

dynamic.nl3.vip.prod.criteo.com

IN A

178.250.1.13
DNS

sp.analytics.yahoo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sp.analytics.yahoo.com

IN A

Response

sp.analytics.yahoo.com

IN CNAME

spdc-global.pbp.gysm.yahoodns.net

spdc-global.pbp.gysm.yahoodns.net

IN A

3.255.41.64

spdc-global.pbp.gysm.yahoodns.net

IN A

34.252.40.201
DNS

connect.facebook.net

msedge.exe

Remote address:

8.8.8.8:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

157.240.17.15
DNS

s.pinimg.com

msedge.exe

Remote address:

8.8.8.8:53

Request

s.pinimg.com

IN A

Response

s.pinimg.com

IN CNAME

s-pinimg-com.gslb.pinterest.com

s-pinimg-com.gslb.pinterest.com

IN CNAME

static.gslb.pinterest.net

static.gslb.pinterest.net

IN CNAME

s.pinimg.com.edgekey.net

s.pinimg.com.edgekey.net

IN CNAME

e6449.dsca.akamaiedge.net

e6449.dsca.akamaiedge.net

IN A

184.26.132.239
GET

https://dynamic.criteo.com/js/ld/ld.js?a=89985

msedge.exe

Remote address:

178.250.1.13:443

Request

GET /js/ld/ld.js?a=89985 HTTP/2.0
host: dynamic.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript; charset=utf-8
date: Tue, 20 Aug 2024 09:05:39 GMT
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin
vary: Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
GET

https://sp.analytics.yahoo.com/spp.pl?a=10000&ea=Homepage&.yp=10106233&js=no&fmseg=undefined&guid=6f08dc9c1910acf39cc05acaffff2dfa&product_id=undefined&tcat=undefined&bn=undefined&opid=4432023&price=undefined&purchase_order=undefined

msedge.exe

Remote address:

3.255.41.64:443

Request

GET /spp.pl?a=10000&ea=Homepage&.yp=10106233&js=no&fmseg=undefined&guid=6f08dc9c1910acf39cc05acaffff2dfa&product_id=undefined&tcat=undefined&bn=undefined&opid=4432023&price=undefined&purchase_order=undefined HTTP/2.0
host: sp.analytics.yahoo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://s.pinimg.com/ct/core.js

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /ct/core.js HTTP/2.0
host: s.pinimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

etag: "e5ca9645e8d8c8a937d77f8658e7bab1"
x-amz-server-side-encryption: AES256
cache-control: max-age=7200
content-encoding: br
accept-ranges: bytes
content-type: application/javascript
content-length: 1880
alt-svc: h3=":443"; ma=600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
GET

https://s.pinimg.com/ct/lib/main.1b182128.js

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /ct/lib/main.1b182128.js HTTP/2.0
host: s.pinimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

etag: "2ede1d70eab18c6ab52837a878fb9264"
x-amz-server-side-encryption: AES256
cache-control: max-age=1209600
content-encoding: br
accept-ranges: bytes
content-type: application/javascript
content-length: 23553
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
GET

https://ct.pinterest.com/v3/?tid=2612546426607&ov=%7B%22page_name%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22page_category%22%3A%22%22%7D&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A720%2C%22sw%22%3A1280%2C%22mh%22%3A%221b182128%22%2C%22is_eu%22%3Atrue%2C%22architecture%22%3A%22x86%22%2C%22model%22%3A%22%22%2C%22platform%22%3A%22Windows%22%2C%22platformVersion%22%3A%2210.0%22%2C%22uaFullVersion%22%3A%2292.0.902.67%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1724144738999

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /v3/?tid=2612546426607&ov=%7B%22page_name%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22page_category%22%3A%22%22%7D&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A720%2C%22sw%22%3A1280%2C%22mh%22%3A%221b182128%22%2C%22is_eu%22%3Atrue%2C%22architecture%22%3A%22x86%22%2C%22model%22%3A%22%22%2C%22platform%22%3A%22Windows%22%2C%22platformVersion%22%3A%2210.0%22%2C%22uaFullVersion%22%3A%2292.0.902.67%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1724144738999 HTTP/2.0
host: ct.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 185
x-envoy-upstream-service-time: 0
pinterest-version: 3241ae12ecef327d6ee2618dd13bec9ec9710d0c
referrer-policy: origin
x-pinterest-rid: 5831098791804952
date: Tue, 20 Aug 2024 09:05:40 GMT
vary: Accept-Encoding
akamai-grn: 0.9a1a1202.1724144740.2918e0ba
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://ct.pinterest.com/user/?tid=2612546426607&ov=%7B%22page_name%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22page_category%22%3A%22%22%7D&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%7D&cb=1724144738995&dep=2%2CPAGE_LOAD

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /user/?tid=2612546426607&ov=%7B%22page_name%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22page_category%22%3A%22%22%7D&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%7D&cb=1724144738995&dep=2%2CPAGE_LOAD HTTP/2.0
host: ct.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVltWmpPREEwTXpJdFl6a3hNQzAwT0RFeUxUa3dOR010T0RKaFlXUmxOalkzTURVMA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 185
x-envoy-upstream-service-time: 0
pinterest-version: 3241ae12ecef327d6ee2618dd13bec9ec9710d0c
referrer-policy: origin
x-pinterest-rid: 1085823398055706
date: Tue, 20 Aug 2024 09:05:40 GMT
vary: Accept-Encoding
akamai-grn: 0.9a1a1202.1724144740.2918e0bb
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://ct.pinterest.com/user/?event=pagevisit&ed=%7B%22event_id%22%3A%22dfa6f1b6ee9cb4eb4cc70827931ccf60%22%7D&tid=2612546426607&cb=1724144738997&dep=5%2CEVENT_TAGS_ABSENT

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /user/?event=pagevisit&ed=%7B%22event_id%22%3A%22dfa6f1b6ee9cb4eb4cc70827931ccf60%22%7D&tid=2612546426607&cb=1724144738997&dep=5%2CEVENT_TAGS_ABSENT HTTP/2.0
host: ct.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
x-envoy-upstream-service-time: 1
pinterest-version: 3241ae12ecef327d6ee2618dd13bec9ec9710d0c
referrer-policy: origin
x-pinterest-rid: 1801234865386469
date: Tue, 20 Aug 2024 09:05:40 GMT
set-cookie: ar_debug=1; Expires=Wed, 20 Aug 2025 09:05:40 GMT; Path=/; Domain=.pinterest.com; Secure; HTTPOnly
akamai-grn: 0.9a1a1202.1724144740.2918e0b9
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://ct.pinterest.com/static/ct/token_create.js

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /static/ct/token_create.js HTTP/2.0
host: ct.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

etag: "16d5d552603d86726ae439fc61299d42"
x-amz-server-side-encryption: AES256
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=7200
date: Tue, 20 Aug 2024 09:05:40 GMT
content-length: 2114
akamai-grn: 0.9a1a1202.1724144740.2918e23b
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://ct.pinterest.com/ct.html

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /ct.html HTTP/2.0
host: ct.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
pinterest-version: 3241ae12ecef327d6ee2618dd13bec9ec9710d0c
referrer-policy: origin
x-pinterest-rid: 6332268036847353
date: Tue, 20 Aug 2024 09:05:40 GMT
vary: Accept-Encoding
akamai-grn: 0.9a1a1202.1724144740.2918e261
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22event_id%22%3A%22dfa6f1b6ee9cb4eb4cc70827931ccf60%22%7D&tid=2612546426607&cb=1724144739147&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%2C%22pin_unauth%22%3A%22dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A720%2C%22sw%22%3A1280%2C%22mh%22%3A%221b182128%22%2C%22is_eu%22%3Atrue%2C%22architecture%22%3A%22x86%22%2C%22model%22%3A%22%22%2C%22platform%22%3A%22Windows%22%2C%22platformVersion%22%3A%2210.0%22%2C%22uaFullVersion%22%3A%2292.0.902.67%22%2C%22ecm_enabled%22%3Afalse%7D

msedge.exe

Remote address:

184.26.132.239:443

Request

GET /v3/?event=pagevisit&ed=%7B%22event_id%22%3A%22dfa6f1b6ee9cb4eb4cc70827931ccf60%22%7D&tid=2612546426607&cb=1724144739147&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%2C%22pin_unauth%22%3A%22dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A720%2C%22sw%22%3A1280%2C%22mh%22%3A%221b182128%22%2C%22is_eu%22%3Atrue%2C%22architecture%22%3A%22x86%22%2C%22model%22%3A%22%22%2C%22platform%22%3A%22Windows%22%2C%22platformVersion%22%3A%2210.0%22%2C%22uaFullVersion%22%3A%2292.0.902.67%22%2C%22ecm_enabled%22%3Afalse%7D HTTP/2.0
host: ct.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
x-envoy-upstream-service-time: 1
pinterest-version: 3241ae12ecef327d6ee2618dd13bec9ec9710d0c
referrer-policy: origin
x-pinterest-rid: 2478751470688376
date: Tue, 20 Aug 2024 09:05:40 GMT
set-cookie: ar_debug=1; Expires=Wed, 20 Aug 2025 09:05:40 GMT; Path=/; Domain=.pinterest.com; Secure; HTTPOnly
set-cookie: _pinterest_ct_ua="TWc9PSZEQVZ2VHkrNUtTb2FKWUVZZ3AvSXVjdXQ4RTNoaTNPajRSbUgrQjJBcGtxRWY0Zm12YW1tODZ5am1GMFlmOGpNSjdMbkNIZ1JpcnhUZ1BTbnJMV0tUa29wQnlzNWdmUHBSaFo3S0ZNRGRubz0mVC95Nkh4Qi84eFBpdTBPcUJNZXdLMEJpL0lvPQ=="; Expires=Wed, 20 Aug 2025 09:05:40 GMT; Path=/; Domain=ct.pinterest.com; Secure
akamai-grn: 0.9a1a1202.1724144740.2918e2ae
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
DNS

160.162.211.66.in-addr.arpa

Remote address:

8.8.8.8:53

Request

160.162.211.66.in-addr.arpa

IN PTR

Response

160.162.211.66.in-addr.arpa

IN PTR

ufespubweb-andes-ebay-com-1-443 ufespubwebsvc155tessio
DNS

87.129.140.209.in-addr.arpa

Remote address:

8.8.8.8:53

Request

87.129.140.209.in-addr.arpa

IN PTR

Response

87.129.140.209.in-addr.arpa

IN PTR

ufespubweb-signin-ebay-com-1-80 ufespubwebsvc132tessio
DNS

107.183.117.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

107.183.117.104.in-addr.arpa

IN PTR

Response

107.183.117.104.in-addr.arpa

IN PTR

a104-117-183-107deploystaticakamaitechnologiescom
DNS

49.176.204.143.in-addr.arpa

Remote address:

8.8.8.8:53

Request

49.176.204.143.in-addr.arpa

IN PTR

Response

49.176.204.143.in-addr.arpa

IN PTR

server-143-204-176-49lhr50r cloudfrontnet
DNS

gum.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

gum.criteo.com

IN A

Response

gum.criteo.com

IN CNAME

gum.nl3.vip.prod.criteo.com

gum.nl3.vip.prod.criteo.com

IN A

178.250.1.11
DNS

ct.pinterest.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ct.pinterest.com

IN A

Response

ct.pinterest.com

IN CNAME

www.pinterest.com

www.pinterest.com

IN CNAME

www-pinterest-com.gslb.pinterest.com

www-pinterest-com.gslb.pinterest.com

IN CNAME

2-01-37d2-0018.cdx.cedexis.net

2-01-37d2-0018.cdx.cedexis.net

IN CNAME

www.pinterest.com.edgekey.net

www.pinterest.com.edgekey.net

IN CNAME

e6449.a.akamaiedge.net

e6449.a.akamaiedge.net

IN A

184.26.132.239
GET

https://gum.criteo.com/syncframe?topUrl=www.ebay.com.au&origin=onetag

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /syncframe?topUrl=www.ebay.com.au&origin=onetag HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
date: Tue, 20 Aug 2024 09:05:39 GMT
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
set-cookie: uid=8d492d86-e141-4f65-8b95-d36c75cbba4b; expires=Sun, 14 Sep 2025 09:05:40 GMT; domain=.criteo.com; path=/; secure; samesite=none
x-robots-tag: noindex
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 299291
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.20.196
GET

https://www.google.com/pagead/1p-user-list/1065028372/?random=1724144739036&cv=11&fst=1724144400000&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfSNzfQm_chgng3V5sSWV8ShJ9TaGtqA&random=1246734257&rmt_tld=0&ipr=y

msedge.exe

Remote address:

172.217.20.196:443

Request

GET /pagead/1p-user-list/1065028372/?random=1724144739036&cv=11&fst=1724144400000&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfSNzfQm_chgng3V5sSWV8ShJ9TaGtqA&random=1246734257&rmt_tld=0&ipr=y HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.google.com/pagead/1p-user-list/1065028372/?random=1724144739051&cv=11&fst=1724144400000&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dpage_view%3Bguid%3D6f08dc9c1910acf39cc05acaffff2dfa%3Becomm_totalvalue%3D1%3Becomm_pagetype%3Dhomepage&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfx7fWYhh9IRM_PkkFCAy4GSZZ4H_-AA&random=2049891883&rmt_tld=0&ipr=y

msedge.exe

Remote address:

172.217.20.196:443

Request

GET /pagead/1p-user-list/1065028372/?random=1724144739051&cv=11&fst=1724144400000&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dpage_view%3Bguid%3D6f08dc9c1910acf39cc05acaffff2dfa%3Becomm_totalvalue%3D1%3Becomm_pagetype%3Dhomepage&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfx7fWYhh9IRM_PkkFCAy4GSZZ4H_-AA&random=2049891883&rmt_tld=0&ipr=y HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://www.google.com/pagead/landing?gcs=G111&gcd=13t3t3t3t5l1&tag_exp=0&rnd=1350036229.1724144739&url=https%3A%2F%2Fwww.ebay.com.au%2F&dma=0&npa=0&gtm=45be48e0v874537556za200&auid=1723759538.1724144739&did=dYmQxMT&gdid=dYmQxMT&frm=0

msedge.exe

Remote address:

172.217.20.196:443

Request

POST /pagead/landing?gcs=G111&gcd=13t3t3t3t5l1&tag_exp=0&rnd=1350036229.1724144739&url=https%3A%2F%2Fwww.ebay.com.au%2F&dma=0&npa=0&gtm=45be48e0v874537556za200&auid=1723759538.1724144739&did=dYmQxMT&gdid=dYmQxMT&frm=0 HTTP/2.0
host: www.google.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

13341218.fls.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

13341218.fls.doubleclick.net

IN A

Response

13341218.fls.doubleclick.net

IN CNAME

dart.l.doubleclick.net

dart.l.doubleclick.net

IN A

142.250.179.102
DNS

ag.gbc.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ag.gbc.criteo.com

IN A

Response

ag.gbc.criteo.com

IN CNAME

gbc0.fr3.eu.criteo.com

gbc0.fr3.eu.criteo.com

IN A

185.235.86.9

gbc0.fr3.eu.criteo.com

IN A

185.235.86.24

gbc0.fr3.eu.criteo.com

IN A

185.235.86.14

gbc0.fr3.eu.criteo.com

IN A

185.235.86.0

gbc0.fr3.eu.criteo.com

IN A

185.235.86.2

gbc0.fr3.eu.criteo.com

IN A

185.235.86.19

gbc0.fr3.eu.criteo.com

IN A

185.235.86.13

gbc0.fr3.eu.criteo.com

IN A

185.235.86.5

gbc0.fr3.eu.criteo.com

IN A

185.235.86.15

gbc0.fr3.eu.criteo.com

IN A

185.235.86.18

gbc0.fr3.eu.criteo.com

IN A

185.235.86.25

gbc0.fr3.eu.criteo.com

IN A

185.235.86.6

gbc0.fr3.eu.criteo.com

IN A

185.235.86.3

gbc0.fr3.eu.criteo.com

IN A

185.235.86.20

gbc0.fr3.eu.criteo.com

IN A

185.235.86.27

gbc0.fr3.eu.criteo.com

IN A

185.235.86.26

gbc0.fr3.eu.criteo.com

IN A

185.235.86.11

gbc0.fr3.eu.criteo.com

IN A

185.235.86.16

gbc0.fr3.eu.criteo.com

IN A

185.235.86.7

gbc0.fr3.eu.criteo.com

IN A

185.235.86.17

gbc0.fr3.eu.criteo.com

IN A

185.235.86.8

gbc0.fr3.eu.criteo.com

IN A

185.235.86.12

gbc0.fr3.eu.criteo.com

IN A

185.235.86.4

gbc0.fr3.eu.criteo.com

IN A

185.235.86.21

gbc0.fr3.eu.criteo.com

IN A

185.235.86.1

gbc0.fr3.eu.criteo.com

IN A

185.235.86.10

gbc0.fr3.eu.criteo.com

IN A

185.235.86.23

gbc0.fr3.eu.criteo.com

IN A

185.235.86.22
DNS

gem.gbc.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

gem.gbc.criteo.com

IN A

Response

gem.gbc.criteo.com

IN CNAME

gbc7.nl3.eu.criteo.com

gbc7.nl3.eu.criteo.com

IN A

185.235.87.223

gbc7.nl3.eu.criteo.com

IN A

185.235.87.222

gbc7.nl3.eu.criteo.com

IN A

185.235.87.198

gbc7.nl3.eu.criteo.com

IN A

185.235.87.202

gbc7.nl3.eu.criteo.com

IN A

185.235.87.219

gbc7.nl3.eu.criteo.com

IN A

185.235.87.220

gbc7.nl3.eu.criteo.com

IN A

185.235.87.204

gbc7.nl3.eu.criteo.com

IN A

185.235.87.206

gbc7.nl3.eu.criteo.com

IN A

185.235.87.209

gbc7.nl3.eu.criteo.com

IN A

185.235.87.212

gbc7.nl3.eu.criteo.com

IN A

185.235.87.210

gbc7.nl3.eu.criteo.com

IN A

185.235.87.216

gbc7.nl3.eu.criteo.com

IN A

185.235.87.207

gbc7.nl3.eu.criteo.com

IN A

185.235.87.208

gbc7.nl3.eu.criteo.com

IN A

185.235.87.200

gbc7.nl3.eu.criteo.com

IN A

185.235.87.221

gbc7.nl3.eu.criteo.com

IN A

185.235.87.205

gbc7.nl3.eu.criteo.com

IN A

185.235.87.201

gbc7.nl3.eu.criteo.com

IN A

185.235.87.197

gbc7.nl3.eu.criteo.com

IN A

185.235.87.211

gbc7.nl3.eu.criteo.com

IN A

185.235.87.213

gbc7.nl3.eu.criteo.com

IN A

185.235.87.215

gbc7.nl3.eu.criteo.com

IN A

185.235.87.196

gbc7.nl3.eu.criteo.com

IN A

185.235.87.199

gbc7.nl3.eu.criteo.com

IN A

185.235.87.217

gbc7.nl3.eu.criteo.com

IN A

185.235.87.214

gbc7.nl3.eu.criteo.com

IN A

185.235.87.218

gbc7.nl3.eu.criteo.com

IN A

185.235.87.203
DNS

dnacdn.net

msedge.exe

Remote address:

8.8.8.8:53

Request

dnacdn.net

IN A

Response

dnacdn.net

IN A

178.250.7.13
GET

https://13341218.fls.doubleclick.net/activityi;src=13341218;type=au_ho0;cat=au_ho0;ord=6823836583058;npa=0;auiddc=1723759538.1724144739;u9=homepage;u5=6f08dc9c1910acf39cc05acaffff2dfa;gdid=dYmQxMT;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe48e0v9173467195za200zb874537556;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=0;epver=2;~oref=https%3A%2F%2Fwww.ebay.com.au%2F?

msedge.exe

Remote address:

142.250.179.102:443

Request

GET /activityi;src=13341218;type=au_ho0;cat=au_ho0;ord=6823836583058;npa=0;auiddc=1723759538.1724144739;u9=homepage;u5=6f08dc9c1910acf39cc05acaffff2dfa;gdid=dYmQxMT;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe48e0v9173467195za200zb874537556;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=0;epver=2;~oref=https%3A%2F%2Fwww.ebay.com.au%2F? HTTP/2.0
host: 13341218.fls.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://dnacdn.net/dna

msedge.exe

Remote address:

178.250.7.13:443

Request

GET /dna HTTP/2.0
host: dnacdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Tue, 20 Aug 2024 09:05:40 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: browser_data=j1YLHV9lVFJhQVlXTVJBZDllRldvJTJGSE84Q3lkckRPdktPTU1hY0NRajclMkJ2aXQlMkJXMVJRc2lEVldNR3lFWDJ0djh1M3l6bDJpOHI1OVg2R1Q0YnNuU1RWJTJGTXVnJTNEJTNE; expires=Sun, 14 Sep 2025 09:05:40 GMT; domain=dnacdn.net; path=/; secure; samesite=none
server-processing-duration-in-ticks: 123841
strict-transport-security: max-age=31536000; preload;
GET

https://dnacdn.net/dna

msedge.exe

Remote address:

178.250.7.13:443

Request

GET /dna HTTP/2.0
host: dnacdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: browser_data=j1YLHV9lVFJhQVlXTVJBZDllRldvJTJGSE84Q3lkckRPdktPTU1hY0NRajclMkJ2aXQlMkJXMVJRc2lEVldNR3lFWDJ0djh1M3l6bDJpOHI1OVg2R1Q0YnNuU1RWJTJGTXVnJTNEJTNE

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Tue, 20 Aug 2024 09:05:39 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: browser_data=8OI2rF9lVFJhQVlXTVJBZDllRldvJTJGSE84Q3lkckRPdktPTU1hY0NRajclMkJ2aXQlMkJXMVJRc2lEVldNR3lFWDJ0djh1M3l6aHp3dHN1WDhiSlNsZW41UXA1dWdCZyUzRCUzRA; expires=Sun, 14 Sep 2025 09:05:40 GMT; domain=dnacdn.net; path=/; secure; samesite=none
server-processing-duration-in-ticks: 138439
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
DNS

www.facebook.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.facebook.com

IN A

Response

www.facebook.com

IN CNAME

star-mini.c10r.facebook.com

star-mini.c10r.facebook.com

IN A

157.240.196.35
DNS

13.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.1.250.178.in-addr.arpa

IN PTR

Response
DNS

6.39.156.108.in-addr.arpa

Remote address:

8.8.8.8:53

Request

6.39.156.108.in-addr.arpa

IN PTR

Response

6.39.156.108.in-addr.arpa

IN PTR

server-108-156-39-6lhr50r cloudfrontnet
DNS

239.132.26.184.in-addr.arpa

Remote address:

8.8.8.8:53

Request

239.132.26.184.in-addr.arpa

IN PTR

Response

239.132.26.184.in-addr.arpa

IN PTR

a184-26-132-239deploystaticakamaitechnologiescom
DNS

64.41.255.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

64.41.255.3.in-addr.arpa

IN PTR

Response

64.41.255.3.in-addr.arpa

IN PTR

ec2-3-255-41-64 eu-west-1compute amazonawscom
DNS

168.214.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

168.214.58.216.in-addr.arpa

IN PTR

Response

168.214.58.216.in-addr.arpa

IN PTR

mad01s26-in-f1681e100net

168.214.58.216.in-addr.arpa

IN PTR

par10s42-in-f8�J

168.214.58.216.in-addr.arpa

IN PTR

mad01s26-in-f8�J
DNS

15.17.240.157.in-addr.arpa

Remote address:

8.8.8.8:53

Request

15.17.240.157.in-addr.arpa

IN PTR

Response

15.17.240.157.in-addr.arpa

IN PTR

xx-fbcdn-shv-01-zrh1fbcdnnet
DNS

11.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.1.250.178.in-addr.arpa

IN PTR

Response
DNS

102.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

102.179.250.142.in-addr.arpa

IN PTR

Response

102.179.250.142.in-addr.arpa

IN PTR

par21s20-in-f61e100net
DNS

196.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.20.217.172.in-addr.arpa

IN PTR

Response

196.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f41e100net

196.20.217.172.in-addr.arpa

IN PTR

par10s50-in-f4�H

196.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f196�H
DNS

13.7.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.7.250.178.in-addr.arpa

IN PTR

Response
DNS

35.196.240.157.in-addr.arpa

Remote address:

8.8.8.8:53

Request

35.196.240.157.in-addr.arpa

IN PTR

Response

35.196.240.157.in-addr.arpa

IN PTR

edge-star-mini-shv-02-mrs2facebookcom
DNS

www2.bing.com

Remote address:

8.8.8.8:53

Request

www2.bing.com

IN A

Response

www2.bing.com

IN CNAME

www.bing.com.cdn.cloudflare.net

www.bing.com.cdn.cloudflare.net

IN A

172.64.154.167

www.bing.com.cdn.cloudflare.net

IN A

104.18.33.89
DNS

226.74.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

226.74.250.142.in-addr.arpa

IN PTR

Response

226.74.250.142.in-addr.arpa

IN PTR

par10s40-in-f21e100net
DNS

104.219.191.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

104.219.191.52.in-addr.arpa

IN PTR

Response
DNS

232.168.11.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

232.168.11.51.in-addr.arpa

IN PTR

Response
DNS

sslwidget.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sslwidget.criteo.com

IN A

Response

sslwidget.criteo.com

IN CNAME

widget.fr3.vip.prod.criteo.com

widget.fr3.vip.prod.criteo.com

IN A

178.250.7.11
GET

https://sslwidget.criteo.com/event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de

msedge.exe

Remote address:

178.250.7.11:443

Request

GET /event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de HTTP/2.0
host: sslwidget.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Tue, 20 Aug 2024 09:05:49 GMT
server: Kestrel
access-control-allow-origin: *
cache-control: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de
pragma: no-cache
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 2334399
strict-transport-security: max-age=31536000; preload;
DNS

widget.us.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

widget.us.criteo.com

IN A

Response

widget.us.criteo.com

IN CNAME

widget.us5.vip.prod.criteo.com

widget.us5.vip.prod.criteo.com

IN A

74.119.117.16
GET

https://widget.us.criteo.com/event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de

msedge.exe

Remote address:

74.119.117.16:443

Request

GET /event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de HTTP/2.0
host: widget.us.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript
date: Tue, 20 Aug 2024 09:05:50 GMT
server: Kestrel
access-control-allow-origin: *
cache-control: no-cache
content-encoding: gzip
expires: 0
pragma: no-cache
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 2936101
strict-transport-security: max-age=31536000; preload;
DNS

16.117.119.74.in-addr.arpa

Remote address:

8.8.8.8:53

Request

16.117.119.74.in-addr.arpa

IN PTR

Response
DNS

11.7.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.7.250.178.in-addr.arpa

IN PTR

Response
DNS

157.123.68.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.123.68.40.in-addr.arpa

IN PTR

Response
DNS

171.39.242.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

171.39.242.20.in-addr.arpa

IN PTR

Response
DNS

csm.nl3.eu.criteo.net

msedge.exe

Remote address:

8.8.8.8:53

Request

csm.nl3.eu.criteo.net

IN A

Response

csm.nl3.eu.criteo.net

IN CNAME

csm.nl3.vip.prod.criteo.net

csm.nl3.vip.prod.criteo.net

IN A

178.250.1.25
POST

https://csm.nl3.eu.criteo.net/iev?entry=c~Gum.EdgeSyncframe.StorageWriting.Dna.Success~1

msedge.exe

Remote address:

178.250.1.25:443

Request

POST /iev?entry=c~Gum.EdgeSyncframe.StorageWriting.Dna.Success~1 HTTP/2.0
host: csm.nl3.eu.criteo.net
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:06:09 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
DNS

25.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

25.1.250.178.in-addr.arpa

IN PTR

Response
GET

https://www.bing.com/qbox?query=gi&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5153fb2e781e4cbb91dc73b8de690350&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gi&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5153fb2e781e4cbb91dc73b8de690350&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 450
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c8e713242769549bce802ca9f65
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-54hjDIZeKIidAcMgysWuJGPcITmWB1+i/6jJNJuQ5EE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:22 GMT
set-cookie: MUID=2B50E7731AA069CA2932F3921BEA68AD; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2B50E7731AA069CA2932F3921BEA68AD; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0C7A6E8010E0678906C27A6111AA66DE; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=EE525E79A356426F8F0CC3BDE3F63326&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0C7A6E8010E0678906C27A6111AA66DE; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144782.2978ef72
GET

https://www.bing.com/qbox?query=gih&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=de1b1b09501d40c89d53b98bf578b9ca&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gih&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=de1b1b09501d40c89d53b98bf578b9ca&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 330
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c8ed09743bf8e8ea03f53b77c77
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-dXNqNFSrY93KueMioez6KlNk+bmXG9Gboc3rVj8/dpc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:22 GMT
set-cookie: MUID=2817B37357C76B4D08DCA79256716A9E; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2817B37357C76B4D08DCA79256716A9E; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1C3B85BF43BC66E60A4F915E420A67FB; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=AEDF53AD468C4F52BAD48235405AB3D7&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:22 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1C3B85BF43BC66E60A4F915E420A67FB; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144782.2978f24a
GET

https://www.bing.com/qbox?query=gihu&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5b4878e0388f4fe4b46a534de48cd3fe&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihu&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5b4878e0388f4fe4b46a534de48cd3fe&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 292
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c8f24894ac0a153517a4ece532d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-jr3XepWjMIxH4fiYFGLQ1v4qrwZSSHsecpupbm6eebU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:23 GMT
set-cookie: MUID=1F094D8621C561FB2E9B596720C06007; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1F094D8621C561FB2E9B596720C06007; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1A672F0915B868AB0C543BE814BD6975; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=0DF8D9CC25D34B59920B4BBB9530E3F3&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1A672F0915B868AB0C543BE814BD6975; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144782.2978f413
GET

https://www.bing.com/qbox?query=gihub&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=cad0f505f54647b8af645ea31318e2cc&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=cad0f505f54647b8af645ea31318e2cc&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 261
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c8f86c444d7845a9253a0b4f291
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-o4NZ03sTDyXxeDYEyoh+Za0MAWjgjoaenpd9MvPWVkI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:23 GMT
set-cookie: MUID=3BE1088B9AEB6BFD131E1C6A9B1B6A57; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3BE1088B9AEB6BFD131E1C6A9B1B6A57; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=26825449C30D6FC035E040A8C2FD6E60; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=C85216630B44476FAFC0C3790763C1B5&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:23 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=26825449C30D6FC035E040A8C2FD6E60; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144783.2978f6c7
GET

https://www.bing.com/qbox?query=gihub+&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=697ce3d4f07949a882ba7623ec710e11&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=697ce3d4f07949a882ba7623ec710e11&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 273
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c901bc04e9d87c2138a1ba60e85
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-pkBXjYTEG2XpypoFXomg+MBLBh04miLXuk2+q9NRJrY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:24 GMT
set-cookie: MUID=35132CC2CFBA6AA2053A3823CE286B0F; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=35132CC2CFBA6AA2053A3823CE286B0F; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=054612A4732D610E2BA6064572BF60A9; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=352B7CB822B242FCA066AF4467D07625&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=054612A4732D610E2BA6064572BF60A9; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144784.29790629
GET

https://www.bing.com/qbox?query=gihub+v&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=76fe4d9c6cbc4a6fb23fb3bda9a9ebe4&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+v&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=76fe4d9c6cbc4a6fb23fb3bda9a9ebe4&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 203
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c90ac6646c988a15ee93c802342
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-yc+gYiRstvO2UszVoBmCsseJwvdCcSTefN0SUcV33HM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:24 GMT
set-cookie: MUID=1479FB3534DB6FA613BAEFD435E06E7B; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1479FB3534DB6FA613BAEFD435E06E7B; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2DEF167A4DA2649B3F4D029B4C99651B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=DD3F955219704BCFBAB491111345E42B&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2DEF167A4DA2649B3F4D029B4C99651B; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144784.29790d8c
GET

https://www.bing.com/qbox?query=gihub+vi&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=fb41f1de0d184991a87ecbc17f3b290f&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+vi&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=fb41f1de0d184991a87ecbc17f3b290f&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 279
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c90dd52411db3831f3b20ae040e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-xX7+vMzjaCTUBae4JZ7ZQXMqDqQ5dPQy7fsmYe7NxsI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:24 GMT
set-cookie: MUID=2D4FD6A96AA865CE13F7C2486B3C640F; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2D4FD6A96AA865CE13F7C2486B3C640F; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1883E4666729691A0BC2F08766BD68CD; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=1F1404927E234D7EA80273DA131283FE&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1883E4666729691A0BC2F08766BD68CD; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144784.2979108b
GET

https://www.bing.com/qbox?query=gihub+vir&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=6065c0ceb98c41c0a1a676d79d8d1ef5&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+vir&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=6065c0ceb98c41c0a1a676d79d8d1ef5&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 307
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c909b6b4ca9bf2d6d68464ecda0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-923Y78JRtaT4KMqyDydDRz6NDjTKd4IspF/vlYudpNE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:24 GMT
set-cookie: MUID=27D24D3A0F8D65C003E159DB0E1E64E2; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=27D24D3A0F8D65C003E159DB0E1E64E2; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0D0C293581A36D5B33743DD480306CF8; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=051CDE90F6EC448A80BC6BA5B90397CD&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0D0C293581A36D5B33743DD480306CF8; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144784.297912ba
GET

https://www.bing.com/qbox?query=gihub+viru&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=d25ae8ac636f4068b01c2134c6d6bc80&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+viru&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=d25ae8ac636f4068b01c2134c6d6bc80&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 274
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c90b5e041d2aa3d9268dd6ce4ff
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-qjlQ9/mMAsAHt0ixfJMO9vZVyxRnDHWeL5ALKf3N42U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:25 GMT
set-cookie: MUID=2EAE8554B1BB6A3320A391B5B0F36B2B; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2EAE8554B1BB6A3320A391B5B0F36B2B; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=336B9BFA568D625D2B848F1B57C56346; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=0C584234FF5A4E39B85D07F78512B496&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:24 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=336B9BFA568D625D2B848F1B57C56346; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144784.2979162c
GET

https://www.bing.com/qbox?query=gihub+virus&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5c0e069bf07140098ce1dccd6e05aad1&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+virus&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5c0e069bf07140098ce1dccd6e05aad1&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 274
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c91d80347c499337f0c9eb5960e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-1m7Sw4tyz1VZP7vbnUtE9vD+PyO678RCgekbrBcAOck='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:25 GMT
set-cookie: MUID=3CD02A71B18F6822247B3E90B0506928; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3CD02A71B18F6822247B3E90B0506928; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=03E8F39D36886E890F2AE77C37576F5D; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=1884418C8C17483087159DCEE9D20212&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=03E8F39D36886E890F2AE77C37576F5D; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144785.2979197a
GET

https://www.bing.com/qbox?query=gihub+viruse&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5553e720f2d740558dbf82e14aa6dd30&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+viruse&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5553e720f2d740558dbf82e14aa6dd30&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 278
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c91189041fba1a4cc11a3c5275e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-jLRQyg5KUYI0ptCYHK/i1lVqreOeB+4uuuN4k96c6kw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:25 GMT
set-cookie: MUID=1D352B1C7C3A6AE023EC3FFD7DF76B94; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1D352B1C7C3A6AE023EC3FFD7DF76B94; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1167A55AB75C610A22C9B1BBB6916090; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=8AFA59D2CA4742DA8881151F77752AF6&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1167A55AB75C610A22C9B1BBB6916090; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144785.29791e59
GET

https://www.bing.com/qbox?query=gihub+viruses&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=711158fd726e41338898d83bdbaf46bc&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=gihub+viruses&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=711158fd726e41338898d83bdbaf46bc&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 268
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c91b8cd423484d40cb628dd76f6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-zvgSeVV/dDI7PzyAk2rtfiL07evyD05BXioh3Sxywjo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:25 GMT
set-cookie: MUID=06A45927C0836EDB131F4DC6C14E6F91; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=06A45927C0836EDB131F4DC6C14E6F91; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=03773344EE8A675F01A527A5EF476698; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=96BB8B8DE9EC4ED9A4A0CB5FAE101410&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=03773344EE8A675F01A527A5EF476698; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144785.297921f7
GET

https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:05:25 GMT
vary: Accept-Encoding
x-eventid: 66c45c9119c64ab4a8ae39e5828890a1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-VjuAKV/jaB4lAPTmrOQzlvQEzlI9z30GocDLuxPhtwc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:06:25 GMT
set-cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:25 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144785.29792516
set-cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:25 GMT; Max-Age=7200
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661b7fb4a5a64a25bfe52f31cdb238a2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-Dc7XB6hZwYD7vh6hxGugqMXoa2v2PSgRTnvZk3RerSA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Tue, 20 Aug 2024 09:06:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144785.297927f9
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661aafd86e0b4a0c8792a1f83cd446ca
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-3vTAQNKq8Us8FU4N1YKatO/0vBvTusxxyorbrP2yIH8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Tue, 20 Aug 2024 09:06:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144785.297927f8
GET

https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=

Response

HTTP/2.0 200

last-modified: Fri, 22 Mar 2024 20:42:06 GMT
etag: 0x8DC4AB0896DD41E
akamai-grn: 0.4c1a1202.1723976452.fb48546
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10060
content-type: image/png
content-md5: NyL0K09FbOsKFVWkE+stgw==
x-ms-request-id: 9cf0ccce-601e-00bc-211d-edd26d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=77261
expires: Wed, 21 Aug 2024 03:04:50 GMT
akamai-grn: 0.521a1202.1724132229.3f69d600
timing-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29792909
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 372
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=

Response

HTTP/2.0 200

last-modified: Mon, 12 Aug 2024 22:08:35 GMT
etag: 0x8DCBB1B4FE17E37
cache-control: public, no-transform, max-age=416236
expires: Fri, 23 Aug 2024 02:34:02 GMT
akamai-grn: 0.4eba1302.1723964206.157907fa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7658
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xjyqyLrD8Rh4DebSjkPaOg==
x-ms-request-id: e0df8205-e01e-0079-534e-edf888000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.2979300d
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:9,%22BC%22:346,%22SE%22:-1,%22TC%22:-1,%22H%22:454,%22BP%22:457,%22CT%22:460,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,3515,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:9,%22BC%22:346,%22SE%22:-1,%22TC%22:-1,%22H%22:454,%22BP%22:457,%22CT%22:460,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,3515,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 6672dcd073a742838654c3093e6e7562
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.2979300b
GET

https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29792ff2
GET

https://www.bing.com/rp/oocd_GLJp7OiNEvIPidegylCzYE.br.js

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /rp/oocd_GLJp7OiNEvIPidegylCzYE.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29792fe2
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0

Response

HTTP/2.0 200

last-modified: Mon, 11 Dec 2023 23:16:32 GMT
etag: 0x8DBFA9F36A4F869
cache-control: public, no-transform, max-age=431959
expires: Thu, 22 Aug 2024 23:27:08 GMT
akamai-grn: 0.b5777b5c.1723937269.98af07b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
x-ms-request-id: 00cbdb06-001e-003c-2f1c-e92d6b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793161
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=53.18853759765625&lon=-4.058230400085449&dispName=Bangor%252C%2520Gwynedd&isEff=1&effLocType=4&clientsid=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /geolocation/write?isDevLoc=false&lat=53.18853759765625&lon=-4.058230400085449&dispName=Bangor%252C%2520Gwynedd&isEff=1&effLocType=4&clientsid=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c92ba6f49a39217a9fd356e3cf3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-oqni+vuhydH2ANmEsdjcOyalhFSp8OCFZr5Xq7TlPDs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: D18FB5498BB84BE2A201D6EB8E95E131 Ref B: LON601060103062 Ref C: 2024-08-20T09:06:26Z
date: Tue, 20 Aug 2024 09:06:26 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:26 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:26 GMT; path=/; secure; SameSite=None
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:26 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793187
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1302507
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.29793297
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1302465
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.29793298
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1302554
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.2979329a
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8371
cache-control: public, max-age=1148827
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.29793299
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785321%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785324%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144785326%2C%22Name%22%3A518%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785327%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785328%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785321%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785324%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144785326%2C%22Name%22%3A518%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785327%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785328%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793269
GET

https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1202
x-check-cacheable: YES
cache-control: public, max-age=1302698
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.2979329c
GET

https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793293
GET

https://th.bing.com/th?id=OVP.mszDF3ismkjfiZfvovS2YgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVP.mszDF3ismkjfiZfvovS2YgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793294
GET

https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793295
GET

https://th.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=80&h=80&c=1&vt=10&bgcl=a0add8&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=80&h=80&c=1&vt=10&bgcl=a0add8&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793296
GET

https://th.bing.com/th?id=ODLS.02f9fbe5-6b3f-462a-80e0-052cde3947e0&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.02f9fbe5-6b3f-462a-80e0-052cde3947e0&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1710
cache-control: public, max-age=1209565
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.2979329b
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1724144785414%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1724144785414%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.297932fa
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793341
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1590
cache-control: public, max-age=1137049
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297933ab
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1590
cache-control: public, max-age=1323158
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297933b3
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}&ndcParam=QUZE
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 703
cache-control: public, max-age=856254
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297933c5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 801
x-check-cacheable: YES
cache-control: public, max-age=1572918
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297933c6
GET

https://th.bing.com/th?id=ODLS.92c3767f-c873-437a-94bc-3560bfdc09ef&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.92c3767f-c873-437a-94bc-3560bfdc09ef&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
x-check-cacheable: YES
cache-control: public, max-age=2354968
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297933b2
GET

https://th.bing.com/th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793340
GET

https://th.bing.com/th?id=OIP.qxOuNl2KtH_sqiHDbFitbQHaE4&w=80&h=80&c=1&vt=10&bgcl=b768ed&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OIP.qxOuNl2KtH_sqiHDbFitbQHaE4&w=80&h=80&c=1&vt=10&bgcl=b768ed&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 543
x-check-cacheable: YES
cache-control: public, max-age=2532503
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.29793480
GET

https://th.bing.com/th?id=ODLS.fd6f8468-2279-4ea8-9c2f-613d5d560750&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.fd6f8468-2279-4ea8-9c2f-613d5d560750&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=714965
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297934a2
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.a266136a-53c0-4a5e-b93c-96461bf21e92&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.a266136a-53c0-4a5e-b93c-96461bf21e92&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1093
x-check-cacheable: YES
cache-control: public, max-age=2467254
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.29793493
GET

https://th.bing.com/th?id=ODLS.61d87d84-0383-4c12-ba5b-5285b5a89328&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.61d87d84-0383-4c12-ba5b-5285b5a89328&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1382
cache-control: public, max-age=723083
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297934b9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f3abb66b-0392-450a-aca6-43d8a45d6d11&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.f3abb66b-0392-450a-aca6-43d8a45d6d11&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1663
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.29793452
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.ITqpdby70xxoeJoFwBxB-AAAAA&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.ITqpdby70xxoeJoFwBxB-AAAAA&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2036
x-check-cacheable: YES
cache-control: public, max-age=2308285
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297934df
GET

https://th.bing.com/th?id=OSK.c70da14552a59f805949377be5278d39&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.c70da14552a59f805949377be5278d39&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 892
cache-control: public, max-age=2177957
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.2979368a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.ed1edc79340e8d0c20bc52d0437c29d6&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.ed1edc79340e8d0c20bc52d0437c29d6&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}&ndcParam=QUZE
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1068
cache-control: public, max-age=867458
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297936a0
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.8eea1256ca716beb5c0e6c8d143c5695&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.8eea1256ca716beb5c0e6c8d143c5695&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1178
cache-control: public, max-age=473623
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297936be
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.TaUHj4RydL4bl0Y_lEmaBZVHPkhEXb7x1l2X4CedGiM&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.TaUHj4RydL4bl0Y_lEmaBZVHPkhEXb7x1l2X4CedGiM&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2123
cache-control: public, max-age=1725062
date: Tue, 20 Aug 2024 09:06:26 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144786.297936dd
x-check-cacheable: YES
GET

https://www.bing.com/images/sbi?mmasync=1&ig=7CF3900D65E54E96AA1C7D6622EE3AB0&iid=.5100&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /images/sbi?mmasync=1&ig=7CF3900D65E54E96AA1C7D6622EE3AB0&iid=.5100&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.297937a0
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1088%2C%22time%22%3A1089%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144785685%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1088%2C%22time%22%3A1089%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144785685%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-length: 17497
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c9280a340fa8c57395c37bc1712
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-5Z6Bqr7Zq/Hmv/+Ga+Fm+fRywdfyeLPbDu49mnoE6nk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:26 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:26 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793736
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1092%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144785688%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1092%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144785688%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.297937b7
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1093%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144785689%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1093%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144785689%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.297937b8
POST

https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5057&IG=7CF3900D65E54E96AA1C7D6622EE3AB0

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /rewardsapp/ncheader?ver=48950276&IID=SERP.5057&IG=7CF3900D65E54E96AA1C7D6622EE3AB0 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 839
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45c92896c4fe9948e2a006ad3b141
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-nBzGB6K4qh9k/iwtQhGD+CKaYhpsHR6T+dQPKPe7mGk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45c92896c4fe9948e2a006ad3b141|AFD:66c45c92896c4fe9948e2a006ad3b141|2024-08-20T09:06:26.959Z
date: Tue, 20 Aug 2024 09:06:26 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.29793891
POST

https://www.bing.com/rewardsapp/reportActivity?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&IID=SERP.5066&q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /rewardsapp/reportActivity?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&IID=SERP.5066&q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 162
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 1018
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45c938a724de4afb332e91245bfae
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-tkTCc2bT03UTv7xJl1c3qqorISPjTNTNpVWcTqowU0w='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45c938a724de4afb332e91245bfae|AFD:66c45c938a724de4afb332e91245bfae|2024-08-20T09:06:27.011Z
date: Tue, 20 Aug 2024 09:06:27 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Wed, 20-Aug-2025 09:06:27 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-08-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144786.297939a6
GET

https://www.bing.com/supercaptionsassets?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&IID=SERP.5746

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /supercaptionsassets?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&IID=SERP.5746 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 15358
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c9339aa492497154219a4227db8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-BzL3dYoqW2ayOBJ8DDWLqg7xaEvdx4kdJsKpgvgVrKs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793bfd
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793f1b
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum6%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793f19
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f6%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793f4c
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c9324bb415eb8c1b3f8f2b8e77d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-aDesMOEzh/QfETNTm5+XooIv2l2U4wQ1DhG14v/ltsk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 339C174815644E6ABC7992C2F957F999 Ref B: LON601060101036 Ref C: 2024-08-20T09:06:27Z
date: Tue, 20 Aug 2024 09:06:27 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=222E5135159E6AFF204545D414AF6B78; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793f03
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1724144785715%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2266c45c9119c64ab4a8ae39e5828890a1%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144785738%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45c9119c64ab4a8ae39e5828890a1%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144785738%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785804%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22isME%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785921%2C%22Name%22%3A%22SCSTPLD%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144786007%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144786014%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786091%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1724144785715%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2266c45c9119c64ab4a8ae39e5828890a1%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144785738%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45c9119c64ab4a8ae39e5828890a1%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144785738%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785804%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22isME%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785921%2C%22Name%22%3A%22SCSTPLD%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144786007%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144786014%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786091%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7298
x-check-cacheable: YES
cache-control: public, max-age=964015
date: Tue, 20 Aug 2024 09:06:27 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144787.29793fd0
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786091%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786091%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9840
x-check-cacheable: YES
cache-control: public, max-age=952818
date: Tue, 20 Aug 2024 09:06:27 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144787.29793fd6
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144786097%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144786097%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3844
x-check-cacheable: YES
cache-control: public, max-age=2346358
date: Tue, 20 Aug 2024 09:06:27 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144787.29793fd7
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793f9d
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144786107%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144786107%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793f9a
GET

https://th.bing.com/th?id=OVP.eTt4dGm8jQGrDcI2_f5tIwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVP.eTt4dGm8jQGrDcI2_f5tIwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793fcf
GET

https://th.bing.com/th?id=OVP.1P5fh1p15tkKFQFwIJ6jpAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVP.1P5fh1p15tkKFQFwIJ6jpAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793fce
GET

https://th.bing.com/th?id=OVP.xWn0SStJRRyvEK6fsodwSAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVP.xWn0SStJRRyvEK6fsodwSAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793fe1
GET

https://th.bing.com/th?id=OSK.HEROPYXhmt9xIZFjih8rN47BRa4kK4GkSdxARfoD_7zE5s4&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.HEROPYXhmt9xIZFjih8rN47BRa4kK4GkSdxARfoD_7zE5s4&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793fe2
GET

https://th.bing.com/th?id=OSK.93d18faff6c23e706e75de65f515c9ed&w=153&h=116&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.93d18faff6c23e706e75de65f515c9ed&w=153&h=116&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793fe3
GET

https://th.bing.com/th?id=OSK.0f051ba4581b8d1ad98ce37ea038d3c4&w=115&h=77&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.0f051ba4581b8d1ad98ce37ea038d3c4&w=115&h=77&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793ffd
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c93611344c68feae86fe45074eb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-N+SL7Xk2X4BepNbtIkmO1iVzLz/9WB5B5RGjawzV9ss='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B4B630AA8097481096DC054253429F62 Ref B: LON601060108036 Ref C: 2024-08-20T09:06:27Z
date: Tue, 20 Aug 2024 09:06:27 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:27 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793fd9
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29793f9c
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1338
cache-control: public, max-age=2592000
date: Tue, 20 Aug 2024 09:06:27 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144787.29793fd8
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5432
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:06:27 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144787.29793fd2
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.PPT&DATA={%22S%22:559,%22E%22:1354,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.PPT&DATA={%22S%22:559,%22E%22:1354,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7569
cache-control: public, max-age=1209578
date: Tue, 20 Aug 2024 09:06:27 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144787.29793fd4
x-check-cacheable: YES
GET

https://www.bing.com/auth/getToken

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /auth/getToken HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.2979422d
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786118%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144786178%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22732%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144786184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221582%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144786184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786245%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786118%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144786178%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22732%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144786184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221582%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144786184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786245%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

cache-control: private
content-length: 872
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c9377bf4149b80c5b68879f96e8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-aU+lDvscXhOEuRV/sYsX9+AlK1u784DESPCNcQbqRHU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: EDFC734314F049E5BD189C5D8FD55B17 Ref B: LON601060107052 Ref C: 2024-08-20T09:06:27Z
date: Tue, 20 Aug 2024 09:06:27 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:27 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.297941dd
GET

https://www.bing.com/header/mobupsellbub?customtype=31

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /header/mobupsellbub?customtype=31 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

cache-control: private
content-length: 640
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c939ea5405d9e569836c4846e35
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-gwo8ElXVM7ASi/lK/2/14z/doGh1q6sqrsbnaDkcGv0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 2477BB658B0846D49A6DEA999BB7E48D Ref B: LON601060108036 Ref C: 2024-08-20T09:06:27Z
date: Tue, 20 Aug 2024 09:06:27 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:27 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29794605
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 286
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c93fef243aca2f5b62b3c33fc4f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-r82K+kKUlcf6vsXS/3WLpg5rNSOpvxBmOHZkiCJXU5I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 644FAB2EB3F14C549B43EA8AA30486D9 Ref B: LON601060108036 Ref C: 2024-08-20T09:06:27Z
date: Tue, 20 Aug 2024 09:06:27 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; max-age=0; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:27 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144787.29794742
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&ID=SERP,5660.1&url=%2Fsearch%3Fq%3Dgithub%2Bvirus%26FORM%3DAWRE

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&ID=SERP,5660.1&url=%2Fsearch%3Fq%3Dgithub%2Bvirus%26FORM%3DAWRE HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45c94a45041c98b94f1427ac1a18e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-RZXNyMAk8zhUV3/fx4t06ZIPmTHM+Vccorpk8/N8UgM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 66C4F6C9A3A3473882EDC993BCFC698B Ref B: LON601060107052 Ref C: 2024-08-20T09:06:28Z
content-length: 0
date: Tue, 20 Aug 2024 09:06:28 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:28 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144788.29795cee
POST

https://www.bing.com/fd/ls/ls.gif?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1724144787755}&log=UserEvent

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/ls.gif?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1724144787755}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144788.29795ebb
GET

https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144786434%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786458%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786458%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786464%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786540%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144786912%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22ClickPage%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144787755%2C%22Name%22%3A%22HideBubble%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144786434%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786458%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786458%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786464%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786540%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144786912%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22ClickPage%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144787755%2C%22Name%22%3A%22HideBubble%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cache-control: max-age=0
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144788.29795ef3
GET

https://www.bing.com/search?q=github+virus&FORM=AWRE

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /search?q=github+virus&FORM=AWRE HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:05:29 GMT
vary: Accept-Encoding
x-eventid: 66c45c95264447af88fcbdc9018eafc7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-jam/Me/4UjRhPHgSxaZHV8kmM5FMvABOfmzlVt/y/lM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144788.29795f74
set-cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:29 GMT; Max-Age=7200; Secure
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 20208
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.297962b8
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.29796287
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 675
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.29796e77
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.29796ea0
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:405,%22SE%22:-1,%22TC%22:-1,%22H%22:500,%22BP%22:514,%22CT%22:528,%22IL%22:9},%22ad%22:[-1,-1,1263,609,1263,3670,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:405,%22SE%22:-1,%22TC%22:-1,%22H%22:500,%22BP%22:514,%22CT%22:528,%22IL%22:9},%22ad%22:[-1,-1,1263,609,1263,3670,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1590
cache-control: public, max-age=1471452
date: Tue, 20 Aug 2024 09:06:29 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144789.2979708e
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 389
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 543
x-check-cacheable: YES
cache-control: public, max-age=452729
date: Tue, 20 Aug 2024 09:06:29 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144789.2979708c
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144788481%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144788481%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144788489%2C%22Name%22%3A598%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788489%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788491%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144788481%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144788481%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144788489%2C%22Name%22%3A598%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788489%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788491%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
x-check-cacheable: YES
cache-control: public, max-age=2502104
date: Tue, 20 Aug 2024 09:06:29 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144789.2979708f
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788491%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788491%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 803
x-check-cacheable: YES
cache-control: public, max-age=2508094
date: Tue, 20 Aug 2024 09:06:29 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144789.2979708d
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.29797062
GET

https://th.bing.com/th?id=OIP.uO6EfM2_6mrHhUZn2qsU2wHaDt&w=80&h=80&c=1&vt=10&bgcl=8dfa43&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OIP.uO6EfM2_6mrHhUZn2qsU2wHaDt&w=80&h=80&c=1&vt=10&bgcl=8dfa43&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.29797088
GET

https://th.bing.com/th?id=OIP.mj1WzB6ILzIp0ugXPjVjoQHaFW&w=80&h=80&c=1&vt=10&bgcl=99eade&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OIP.mj1WzB6ILzIp0ugXPjVjoQHaFW&w=80&h=80&c=1&vt=10&bgcl=99eade&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.29797089
GET

https://th.bing.com/th?id=ODLS.fd6f8468-2279-4ea8-9c2f-613d5d560750&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.fd6f8468-2279-4ea8-9c2f-613d5d560750&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1451
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:06:29 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144789.2979708a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.89bceaba-f06e-4132-82f1-cdfb5e71e02a&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.89bceaba-f06e-4132-82f1-cdfb5e71e02a&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1818
cache-control: public, max-age=1304343
date: Tue, 20 Aug 2024 09:06:29 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144789.29797152
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1217
cache-control: public, max-age=1209593
date: Tue, 20 Aug 2024 09:06:29 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144789.2979708b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.297971ad
GET

https://th.bing.com/th?id=ODLS.81fc40e7-07a9-443d-ae42-76ffcee46bbf&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.81fc40e7-07a9-443d-ae42-76ffcee46bbf&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.297971c8
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2212%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2212%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.2979724d
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.297972d5
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788492%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788492%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788496%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788499%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788501%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788501%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A941%2C%22time%22%3A942%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144788698%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788492%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788492%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788496%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788499%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788501%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788501%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A941%2C%22time%22%3A942%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144788698%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.297972d6
GET

https://www.bing.com/images/sbi?mmasync=1&ig=273BDD523DE041CDAF22CA261CD8CD5B&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /images/sbi?mmasync=1&ig=273BDD523DE041CDAF22CA261CD8CD5B&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 17498
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c958926434b90fb54c9a96f4ce5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-+PSsFvqrSl0nMr/VckgD8F6wfCKkiJ14F7zj/U2lgAs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:29 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:29 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.297972d3
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A944%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144788699%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A944%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144788699%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 838
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45c950c9445d290d93fa253e16d89
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-syIuOVAWXpBJIG/H0GEo4sDDI24aDEw7Tio1ffvrONc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45c950c9445d290d93fa253e16d89|AFD:66c45c950c9445d290d93fa253e16d89|2024-08-20T09:06:29.956Z
date: Tue, 20 Aug 2024 09:06:29 GMT
set-cookie: _C_ETH=1; expires=Mon, 19 Aug 2024 09:06:29 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.29797350
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A945%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144788700%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A945%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144788700%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 1025
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45c954bab4d849ceb01ef991179b8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-5E6lz/WJAvZlhFV32c+1I4bfkUbdWvbmZQLga7eG7JY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45c954bab4d849ceb01ef991179b8|AFD:66c45c954bab4d849ceb01ef991179b8|2024-08-20T09:06:29.970Z
date: Tue, 20 Aug 2024 09:06:29 GMT
set-cookie: _C_ETH=1; expires=Mon, 19 Aug 2024 09:06:29 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Wed, 20-Aug-2025 09:06:29 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-08-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144789.297973a5
POST

https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=273BDD523DE041CDAF22CA261CD8CD5B

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=273BDD523DE041CDAF22CA261CD8CD5B HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297975b6
POST

https://www.bing.com/rewardsapp/reportActivity?IG=273BDD523DE041CDAF22CA261CD8CD5B&IID=SERP.5065&q=github+virus&FORM=AWRE

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /rewardsapp/reportActivity?IG=273BDD523DE041CDAF22CA261CD8CD5B&IID=SERP.5065&q=github+virus&FORM=AWRE HTTP/2.0
host: www.bing.com
content-length: 72
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585

Response

HTTP/2.0 200

content-length: 15358
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45c96b2e847e78cfd5cdb2023c7c5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-+Nj1PgG6vbrll3GI+jckaioZSSGJtdK38S5ZrVHk5KE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297975e1
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297975b4
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.2979785b
GET

https://www.bing.com/supercaptionsassets?IG=273BDD523DE041CDAF22CA261CD8CD5B&IID=SERP.5770

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /supercaptionsassets?IG=273BDD523DE041CDAF22CA261CD8CD5B&IID=SERP.5770 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.2979785a
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum3%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum3%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.29797874
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f3%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f3%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978bf
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978de
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45c95264447af88fcbdc9018eafc7%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144788709%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45c95264447af88fcbdc9018eafc7%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144788709%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788767%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22isME%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788878%2C%22Name%22%3A%22SCSTPLD%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144788957%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144788963%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45c95264447af88fcbdc9018eafc7%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144788709%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45c95264447af88fcbdc9018eafc7%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144788709%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788767%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22isME%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788878%2C%22Name%22%3A%22SCSTPLD%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144788957%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144788963%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978df
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978e2
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978c0
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978dd
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9659
x-check-cacheable: YES
cache-control: public, max-age=1185901
date: Tue, 20 Aug 2024 09:06:30 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144790.297978e1
GET

https://th.bing.com/th?id=OVP.yH1UiDLLeCb2VUvWEafMAwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVP.yH1UiDLLeCb2VUvWEafMAwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978e3
GET

https://th.bing.com/th?id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978e6
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789020%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789020%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c96cf1d4bd393a794d6339152ac
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-Jq+/d3da2SVhzce66Abbpa6mz8RPufEnI1L2mM+OlIQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 0E0FA4FF6BDC44FD9E84C5656E88DD0D Ref B: LON601060105052 Ref C: 2024-08-20T09:06:30Z
date: Tue, 20 Aug 2024 09:06:30 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:30 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:30 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.297978e5
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789020%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789020%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.2979792d
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9548
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:06:30 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144790.297978e0
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789021%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789021%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.29797ac9
GET

https://www.bing.com/auth/getToken

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /auth/getToken HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
content-length: 904
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45c9646cc480b907b55687facdb97
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-i83Hg4fMsu7iEozfFyNXxZwoM745VUrhSKn3YafiMuE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: F936D975864C4AD98492D49F527FF4E5 Ref B: LON601060101029 Ref C: 2024-08-20T09:06:30Z
date: Tue, 20 Aug 2024 09:06:30 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:30 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144790.2979792c
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.PPT&DATA={%22S%22:550,%22E%22:1077,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.PPT&DATA={%22S%22:550,%22E%22:1077,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45c970f9c4860be3706663b034512
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-EBsGaJjsrXGY7QqD0FH9tZ4dSEOuliLngbUL1IaOXao='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: DBB20D80A8DF478D8D9755992E41DFB0 Ref B: LON601060101052 Ref C: 2024-08-20T09:06:31Z
content-length: 0
date: Tue, 20 Aug 2024 09:06:31 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:31 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144791.29798ec6
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144789022%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22744%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144789023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221267%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144789023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789119%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144789022%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22744%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144789023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221267%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144789023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789119%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1230
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4D00A2898709415699887A2E77487199 Ref B: LON601060104040 Ref C: 2024-08-20T09:06:31Z
date: Tue, 20 Aug 2024 09:06:31 GMT
set-cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo; domain=.bing.com; expires=Sun, 14-Sep-2025 09:06:31 GMT; path=/; Partitioned; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144791.29799081
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5503.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De809c7ba1a82de7aJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUwMw%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dgithub%2Bvirus%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5503.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De809c7ba1a82de7aJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUwMw%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dgithub%2Bvirus%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585

Response

HTTP/2.0 200

cache-control: public, max-age=15552000
content-length: 4286
content-type: image/x-icon
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661f8c5a094746f0ba53ae3b28a08fce
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-ayDvskrA3euzUzSSfY1iuTwtXBm0KinpB/iMug/gTfg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 4D52ADF3EEC54B58A97CC063917559FA Ref B: LON04EDGE1120 Ref C: 2024-04-18T16:20:01Z
date: Tue, 20 Aug 2024 09:06:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144791.297991b6
GET

https://www.bing.com/ck/a?!&&p=e809c7ba1a82de7aJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUwMw&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /ck/a?!&&p=e809c7ba1a82de7aJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUwMw&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144791.29799164
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19196
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144791.29799185
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585

Response

HTTP/2.0 200

content-length: 75
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45c98a441404f81f9f93f5085a425
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-fw3dOW8e2IRkQbRyJdETgN9eP1/ngEmsvznS3Exsvyc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:06:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144792.29799ee6
GET

https://www.bing.com/favicon.ico

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /favicon.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 41572
date: Tue, 20 Aug 2024 09:06:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144793.2979af4c
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 54612
date: Tue, 20 Aug 2024 09:06:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144793.2979af65
GET

https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144793.2979af67
GET

https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144795.2979d30a
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144789203%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144789204%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144789213%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144789608%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724144791603%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144789203%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144789204%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144789213%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144789608%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724144791603%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144795.2979d309
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 667
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144802.297a6b88
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724144791985%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724144791985%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144803.297a76b4
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144801683%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144801683%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144804.297a8970
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 649
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 200

cache-control: no-cache
pragma: no-cache
content-length: 25
content-type: text/html
content-encoding: gzip
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45ca59dfa4838b706297b10694715
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-ng4T12CYRnaLkz+pE3QmIz1a3E/eU0o2xB5bwL1I3Zs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 42BD9E6829E74C599D89FED3D220AE2F Ref B: LON601060108062 Ref C: 2024-08-20T09:06:45Z
date: Tue, 20 Aug 2024 09:06:45 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:45 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144805.297a8c06
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144802727%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144802727%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1234
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AA714DA1EF474294B483488583E445BD Ref B: LON601060108036 Ref C: 2024-08-20T09:06:46Z
date: Tue, 20 Aug 2024 09:06:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144806.297aa25f
GET

https://www.bing.com/notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45ca61aaa419d9d4cd14f12330c3a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-QzObKJhQcQAk1CMYhNgXoc5VOTXIeUah8lPDG2+exy0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 8EA2B7CE5D2241989BA76BA69BC59495 Ref B: LON601060105054 Ref C: 2024-08-20T09:06:46Z
content-length: 0
date: Tue, 20 Aug 2024 09:06:46 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:06:46 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144806.297aa26e
GET

https://www.bing.com/ck/a?!&&p=ce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /ck/a?!&&p=ce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144806.297aa2a0
GET

https://www.bing.com/fd/ls/GLinkPing.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5219.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/GLinkPing.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5219.2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:06:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144807.297aae60
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1433
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:06 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144826.297be574
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144803841%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144803841%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144804338%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144804375%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144803841%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144803841%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144804338%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144804375%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:06 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144826.297be575
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144827.297beee7
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144825355%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144825355%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144828.297c0051
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1275
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144829.297c0f6b
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144826659%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144826659%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144830.297c1c8e
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22show%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22show%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144830.297c1d2b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1500
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144836.297c7405
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724144827868%2C%22Name%22%3A%22Render%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724144827868%2C%22Name%22%3A%22Render%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 17:45:09 GMT
etag: 0x8DA7EE5E61E57CA
akamai-grn: 0.5df01002.1695977746.6e8aca38
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 902
content-type: image/gif
content-md5: hKRDdnZSALaXoKXEZT/Kiw==
x-ms-request-id: f5da40e0-a01e-002d-33c0-9e5322000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.40331302.1700196139.200db89a
akamai-grn: 0.02d01702.1701401452.2f4a66fb
akamai-grn: 0.15d01702.1703005408.17305664
akamai-grn: 0.10fd4817.1709247860.766ed03
cache-control: public, no-transform, max-age=8944404
expires: Tue, 25 Jun 2024 21:24:14 GMT
akamai-grn: 0.04cc19b8.1710406250.10008db0
timing-allow-origin: *
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144837.297c874c
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1604
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: private
content-length: 20659
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45cc516b64f418f3ded71ce76581c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-cqeu1HcMxW3pF8hS0eMFx1lwRv27otz4ljhWf5nUl0g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: E175AE2C144B497888A06C6B5AA749B1 Ref B: LON601060104040 Ref C: 2024-08-20T09:07:17Z
date: Tue, 20 Aug 2024 09:07:17 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:07:17 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144837.297c8746
POST

https://www.bing.com/supercaptions?IID=SERP.5779&IG=273BDD523DE041CDAF22CA261CD8CD5B

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /supercaptions?IID=SERP.5779&IG=273BDD523DE041CDAF22CA261CD8CD5B HTTP/2.0
host: www.bing.com
content-length: 155
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144837.297c8990
GET

https://www.bing.com/rp/OJWYLxkTdSOmE7-V53KpAdOj-xY.gif

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /rp/OJWYLxkTdSOmE7-V53KpAdOj-xY.gif HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144837.297c8992
GET

https://www.bing.com/th?id=OIP.uO6EfM2_6mrHhUZn2qsU2wHaDt&w=240&h=120&c=7&o=6&pid=SupCap

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OIP.uO6EfM2_6mrHhUZn2qsU2wHaDt&w=240&h=120&c=7&o=6&pid=SupCap HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3592
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144837.297c897c
GET

https://www.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=188&h=160&c=7&o=6&pid=3.1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=188&h=160&c=7&o=6&pid=3.1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3793
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144837.297c898f
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144835712%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.Hide%22%2C%22TS%22%3A1724144836133%2C%22Name%22%3A%22ScopeDropdownMenuHide%22%2C%22FID%22%3A%22ScopeDropdownMenu%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144836239%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144836271%2C%22Name%22%3A%22SuperCaptionHighQImg%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22Type%22%3A%220%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144836272%2C%22Name%22%3A%22SuperCaptionContainerOpened%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144835712%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.Hide%22%2C%22TS%22%3A1724144836133%2C%22Name%22%3A%22ScopeDropdownMenuHide%22%2C%22FID%22%3A%22ScopeDropdownMenu%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144836239%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144836271%2C%22Name%22%3A%22SuperCaptionHighQImg%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22Type%22%3A%220%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144836272%2C%22Name%22%3A%22SuperCaptionContainerOpened%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144837.297c8eec
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22id%22%3A%22SERP.5779%22%2C%22Type%22%3A%220%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144836272%2C%22Name%22%3A%22ShowFlyout%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22id%22%3A%22SERP.5779%22%2C%22Type%22%3A%220%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144836272%2C%22Name%22%3A%22ShowFlyout%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144838.297c9d05
GET

https://www.bing.com/fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22h%22,%22TS%22:1724144836630,%22FID%22:%22SuperCaption%22}&log=UserEvent

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22h%22,%22TS%22:1724144836630,%22FID%22:%22SuperCaption%22}&log=UserEvent HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144839.297ca7d0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1922
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144839.297cacc3
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144837110%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144837110%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:22 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144842.297cd98b
GET

https://www.bing.com/fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22d2%22,%22TS%22:1724144838639,%22FID%22:%22SuperCaption%22}&log=UserEvent

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22d2%22,%22TS%22:1724144838639,%22FID%22:%22SuperCaption%22}&log=UserEvent HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144843.297cdcd7
GET

https://www.bing.com/fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22d5%22,%22TS%22:1724144841633,%22FID%22:%22SuperCaption%22}&log=UserEvent

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22d5%22,%22TS%22:1724144841633,%22FID%22:%22SuperCaption%22}&log=UserEvent HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:24 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144844.297cf044
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1628
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144845.297cfdea
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 739
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144845.297cfe44
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 671
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:28 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144848.297d2b8b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144866.297e77c7
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144844984%2C%22Name%22%3A%22SuperCaptionIconClosed%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144844984%2C%22Name%22%3A%22SuperCaptionIconClosed%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144867.297e842a
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144865509%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144865509%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144868.297e9a49
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 833
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144876.297f21ad
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144867195%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144867195%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144876.297f28e1
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2963
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45cee5a804725a877f881ad1fcb80
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-VxMMRz9eNbmIojEqBhGSRLwqqEZXfWL3epkmzpf1rj8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: A073F15E78AA4CDCA6E98E825E8460A8 Ref B: LON601060108042 Ref C: 2024-08-20T09:07:58Z
content-length: 0
date: Tue, 20 Aug 2024 09:07:58 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:07:58 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144878.297f41f6
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144873765%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144874116%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144873765%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144874116%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1234
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BB2B46DBD9564A44AD512D6474851F65 Ref B: LON601060101025 Ref C: 2024-08-20T09:07:58Z
date: Tue, 20 Aug 2024 09:07:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144878.297f43e1
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5219.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dgithub%2Bvirus%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5219.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dgithub%2Bvirus%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:07:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144879.297f4b64
GET

https://www.bing.com/ck/a?!&&p=ce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /ck/a?!&&p=ce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 282
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45d3a82a74a99b2ed0775bfb47205
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-St7i4BtWerXDIkYsxr7a5ZLOFKPa+7S4JNBOXaBgPCQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:09:14 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1901109F3B5561D6383B047E3A6C60CD; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585; domain=.bing.com; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144954.2983fff1
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1518
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 266
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45d3a023f4e42aff0ae7a8799ad8a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-5HWbS2yKwgDBvnBfRdMM2gqNLiose46bjxOoYq/eEx0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:09:14 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=01F7FF4793C96CF7186CEBA6920E6D98; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585; domain=.bing.com; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144954.2984046b
GET

https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=656e26c5cb3a49c3b7abd9b5a0bc9811&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=y&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=656e26c5cb3a49c3b7abd9b5a0bc9811&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 265
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45d3a0c8041ae83fcd5b0fbe506f2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-bH9o5wIGTRAYWIsenfPSoGXCN7YJjjLHiEBon0S9D0w='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:09:14 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=152D647259A96FA437F1709358696E46; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585; domain=.bing.com; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144954.298407ee
GET

https://www.bing.com/qbox?query=yo&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=381a25a489eb4cefba23901699fa869e&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=yo&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=381a25a489eb4cefba23901699fa869e&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 266
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45d3abd68425bad2bfdd5117a9e55
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-3nR8NoK4EGs1uLDpVaMtnBT+08T34ljAN4SjBqw58zo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:09:14 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=20368F56A66D6B553C909BB7A7D86A29; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585; domain=.bing.com; expires=Sun, 14-Sep-2025 09:09:14 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144954.29840a61
GET

https://www.bing.com/qbox?query=yoo&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=f3d3a0c02a5f4da890da21ba56c8ca80&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=yoo&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=f3d3a0c02a5f4da890da21ba56c8ca80&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:08:15 GMT
vary: Accept-Encoding
x-eventid: 66c45d3ba5234bb2909297422d6efa6d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-LN3l/RQLJfBlBzXOdv5ZfD1aW1GHLHvmwa9B/vmy4nA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:09:15 GMT
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144955.2984151c
set-cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:29 GMT; Max-Age=7034; Secure
GET

https://www.bing.com/qbox?query=yoou&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=6dae630719f246509924bf2bdd186a2b&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=yoou&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=6dae630719f246509924bf2bdd186a2b&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144955.298420c7
GET

https://www.bing.com/qbox?query=yoout&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=dace69eef9b84185b948c15fab46cb94&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=yoout&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=dace69eef9b84185b948c15fab46cb94&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144955.298420e3
GET

https://www.bing.com/qbox?query=yooutu&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=f56a64ca699a47ffb4083e22098cfbcf&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=yooutu&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=f56a64ca699a47ffb4083e22098cfbcf&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1301992
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298422d9
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=yooutub&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=ad7d603cd1b446bf979845d0f96d70d5&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /qbox?query=yooutub&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=ad7d603cd1b446bf979845d0f96d70d5&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1301929
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298422da
x-check-cacheable: YES
GET

https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX5T5s1yRAQAANaYJbxg4aeFMPehaN1cnl5G65q6dvIZUuP8cVDW7LOm+K4w18BkToI/8ZWN+m492KBk4PzYD0uJFPl7OlN0fV0CoFKhlOqjJJ+NY9oWqQRcrTGuhspDfposMJZYcU7PuYvlom2zQfOSy8aBKNcGwTUs1WLsHXvtOxCQ4tHutpc3ApeVaETY/r1oCXmLqBaJJ51ANUy8RmqF1rS8v2p813Yy0VEWW6ZZEIcUqBY+qsA==~1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1301950
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298422db
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:25,%22BC%22:373,%22SE%22:-1,%22TC%22:-1,%22H%22:507,%22BP%22:536,%22CT%22:550,%22IL%22:12},%22ad%22:[-1,-1,1263,609,1263,3045,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:25,%22BC%22:373,%22SE%22:-1,%22TC%22:-1,%22H%22:507,%22BP%22:536,%22CT%22:550,%22IL%22:12},%22ad%22:[-1,-1,1263,609,1263,3045,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1301997
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298422dc
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3670&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1301913
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298422dd
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144954756%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144954756%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A529%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144954756%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144954756%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A529%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1060
cache-control: public, max-age=2353855
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298422de
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298422a4
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298422a0
GET

https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298422d8
GET

https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1301980
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298423dc
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1302110
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298423dd
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 555
cache-control: public, max-age=1022482
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298423e5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1302
cache-control: public, max-age=264426
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298423e6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.1b7ba985-e453-440d-926d-eb4586cfeb73&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.1b7ba985-e453-440d-926d-eb4586cfeb73&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 555
cache-control: public, max-age=1115584
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298423e4
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298423c9
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298423ca
GET

https://th.bing.com/th?id=ODL.efcc5a18e25d43f74c9b687beeab394d&w=80&h=80&c=1&vt=9&bgcl=4dde4a&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODL.efcc5a18e25d43f74c9b687beeab394d&w=80&h=80&c=1&vt=9&bgcl=4dde4a&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1372
cache-control: public, max-age=2591969
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298423d6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298424a4
GET

https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298424a3
GET

https://th.bing.com/th?id=ODLS.57da01a6-0228-4314-babe-f3b8376864e5&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.57da01a6-0228-4314-babe-f3b8376864e5&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 17500
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45d3c05134b8aa106922ada8f7dd4
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-ILnyy0sGLoDwqKH8xDpFBGsSde3BOJCo9PwBNPFzSks='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984247a
GET

https://th.bing.com/th?id=ODLS.57da01a6-0228-4314-babe-f3b8376864e5&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODLS.57da01a6-0228-4314-babe-f3b8376864e5&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298424b2
GET

https://th.bing.com/th?id=OSK.91c5fd1f62edc8cd02b0627d11286a0e&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.91c5fd1f62edc8cd02b0627d11286a0e&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 839
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45d3c54784a6896ddc80778fddbbc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-wL9qLa6+fC84WYpq0cU7uhNBmSEM0rnIOyrEixN8FUg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45d3c54784a6896ddc80778fddbbc|AFD:66c45d3c54784a6896ddc80778fddbbc|2024-08-20T09:09:16.216Z
date: Tue, 20 Aug 2024 09:09:16 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.29842513
GET

https://www.bing.com/images/sbi?mmasync=1&ig=33BB2CA90E6D4D5E9A374702C8A60C25&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /images/sbi?mmasync=1&ig=33BB2CA90E6D4D5E9A374702C8A60C25&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1199
cache-control: public, max-age=2322144
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298425a6
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954769%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954770%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954774%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A932%2C%22time%22%3A935%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144954970%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954769%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954770%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954774%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A932%2C%22time%22%3A935%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144954970%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1063
cache-control: public, max-age=1746742
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298425b3
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A936%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144954971%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A936%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144954971%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1101
cache-control: public, max-age=1727850
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298425b4
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A936%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144954972%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A936%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144954972%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1233
cache-control: public, max-age=1046629
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298425b5
x-check-cacheable: YES
POST

https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=33BB2CA90E6D4D5E9A374702C8A60C25

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=33BB2CA90E6D4D5E9A374702C8A60C25 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1022
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45d3cbd30449cbdd3549a8306c707
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-WnDp/gkbAmNPVaHfk+s4OAnP/c9Rdql+v4o7lc+VMrk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45d3cbd30449cbdd3549a8306c707|AFD:66c45d3cbd30449cbdd3549a8306c707|2024-08-20T09:09:16.229Z
date: Tue, 20 Aug 2024 09:09:16 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Wed, 20-Aug-2025 09:09:16 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-08-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.29842557
POST

https://www.bing.com/rewardsapp/reportActivity?IG=33BB2CA90E6D4D5E9A374702C8A60C25&IID=SERP.5065&q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /rewardsapp/reportActivity?IG=33BB2CA90E6D4D5E9A374702C8A60C25&IID=SERP.5065&q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 156
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.29842798
GET

https://th.bing.com/th?id=OSK.4a3cdd1a0f160f1ecd5c7e8da5510752&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.4a3cdd1a0f160f1ecd5c7e8da5510752&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.29842797
GET

https://th.bing.com/th?id=OSK.3ccc18cfcc9b6e62708b6f3b06e7563a&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.3ccc18cfcc9b6e62708b6f3b06e7563a&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298427fb
GET

https://th.bing.com/th?id=OSK.b85990d8c7f1aa321250c99aef0530ea&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.b85990d8c7f1aa321250c99aef0530ea&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298427fa
GET

https://th.bing.com/th?id=OSK.a9fa17ec2f3b4b066ec1984fb5ebc3b4&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.a9fa17ec2f3b4b066ec1984fb5ebc3b4&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:29.9839560+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.29842816
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum11%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum11%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/webp
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6006
cache-control: public, max-age=2415830
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.29842892
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f11%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f11%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 882
cache-control: public, max-age=2501005
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.29842890
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum3%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum3%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/webp
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1364
cache-control: public, max-age=1032688
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.29842894
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f3%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f3%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 16242
x-check-cacheable: YES
cache-control: public, max-age=1561493
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.2984288f
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 13834
x-check-cacheable: YES
cache-control: public, max-age=1733749
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MISS from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.29842891
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144789&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/webp
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2456
cache-control: public, max-age=388790
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.29842893
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45d3ba5234bb2909297422d6efa6d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144954991%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45d3ba5234bb2909297422d6efa6d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144954991%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955029%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955171%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45d3ba5234bb2909297422d6efa6d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144954991%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45d3ba5234bb2909297422d6efa6d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144954991%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955029%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955171%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984282f
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955172%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955172%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984288a
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144955174%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144955174%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984288b
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984288d
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984288e
GET

https://th.bing.com/th?id=OVFT.yGQijLr1q95e-d4z5GjExy&pid=News&w=300&h=186&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVFT.yGQijLr1q95e-d4z5GjExy&pid=News&w=300&h=186&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984289f
GET

https://th.bing.com/th?id=ODF.Itq1YaygZYquIY-bZPUV3w&pid=news&w=16&h=16&c=14&rs=2

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=ODF.Itq1YaygZYquIY-bZPUV3w&pid=news&w=16&h=16&c=14&rs=2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.2984288c
GET

https://th.bing.com/th?id=OVFT.sqKy2xeqxg_2NZKut1KDwy&pid=News&w=300&h=186&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OVFT.sqKy2xeqxg_2NZKut1KDwy&pid=News&w=300&h=186&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298428a4
GET

https://th.bing.com/th?id=OSK.HEROjdo_Xsb7qBvK0B0wkLPyULqzmPNaRfFo5cdaweXp-nM&w=384&h=228&c=1&rs=2&o=6&oif=webp&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.HEROjdo_Xsb7qBvK0B0wkLPyULqzmPNaRfFo5cdaweXp-nM&w=384&h=228&c=1&rs=2&o=6&oif=webp&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298428a2
GET

https://th.bing.com/th?id=OIP.-X6T6oFwIR4hjFZQeMK-dAHaEX&w=145&h=85&o=6&oif=webp&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OIP.-X6T6oFwIR4hjFZQeMK-dAHaEX&w=145&h=85&o=6&oif=webp&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298428a3
GET

https://th.bing.com/th?id=OSK.HNYBd0SxnRohPbXIx9ptlF_4NdNWY8j0CblVBceq8PmITvE&w=88&h=53&o=6&oif=webp&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.HNYBd0SxnRohPbXIx9ptlF_4NdNWY8j0CblVBceq8PmITvE&w=88&h=53&o=6&oif=webp&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45d3c97f047fa9fbbfee12811612c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-IU1UPX8UTchiImR0tji5DV54Uj1fyIqm+gJiIGwpW9g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 5B9EB5C9C3A644DE9D1E20DAF6B37D12 Ref B: LON601060105042 Ref C: 2024-08-20T09:09:16Z
date: Tue, 20 Aug 2024 09:09:16 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:09:16 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916; domain=.bing.com; expires=Sun, 14-Sep-2025 09:09:16 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298428a0
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 541
cache-control: public, max-age=1310302
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298429fb
x-check-cacheable: YES
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 746
cache-control: public, max-age=2354958
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298429fc
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}&ndcParam=QUZE
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 664
cache-control: public, max-age=610603
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298429fd
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 666
cache-control: public, max-age=1403091
date: Tue, 20 Aug 2024 09:09:16 GMT
x-cache: TCP_MEM_HIT from a95-101-129-222.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.de81655f.1724144956.298429ff
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.PPT&DATA={%22S%22:583,%22E%22:1007,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.PPT&DATA={%22S%22:583,%22E%22:1007,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 903
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45d3c27b242548d8beac966484f75
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-HNQlVKwOyTMSxvkN4V+Zf5Be2mqrBLl6IdtjI7qjosY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 498909141E9D4C389C1AAB9AB3FF86D1 Ref B: LON601060105025 Ref C: 2024-08-20T09:09:16Z
date: Tue, 20 Aug 2024 09:09:16 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:09:16 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.298428ce
GET

https://www.bing.com/auth/getToken

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /auth/getToken HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144956.29842a8f
GET

https://th.bing.com/th?id=OSK.HNYBWwTMpNEKPy1XXeAuyp7MOtCQRyMSNn2uvhYrTjYjrnE&w=36&h=36&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.HNYBWwTMpNEKPy1XXeAuyp7MOtCQRyMSNn2uvhYrTjYjrnE&w=36&h=36&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144957.298438a6
GET

https://th.bing.com/th?id=OSK.HNYB_87p5g93-FGhgKwtbLVOzro0RcGRh5SAS9NAjXI669k&w=36&h=36&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.HNYB_87p5g93-FGhgKwtbLVOzro0RcGRh5SAS9NAjXI669k&w=36&h=36&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 75
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45d3e9f9d4401b160b390339ca6a8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-CsK29UtUlrPo5E43bcaXKNwUs6vDOvwAU0DsIxrVGAI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:09:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144958.298446ab
GET

https://th.bing.com/th?id=OSK.HNYBByhdtbfKjPIS2l05Cw5dqm0gsQ0GEFPGqXPeh7A_7Zs&w=36&h=36&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.HNYBByhdtbfKjPIS2l05Cw5dqm0gsQ0GEFPGqXPeh7A_7Zs&w=36&h=36&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144958.29844b76
GET

https://th.bing.com/th?id=OSK.HNYBDSLEHoFFet3QBdvtvMb1ND0a6X-ux9UdKrLkYYQx1YI&w=36&h=36&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /th?id=OSK.HNYBDSLEHoFFet3QBdvtvMb1ND0a6X-ux9UdKrLkYYQx1YI&w=36&h=36&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090630
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144958.29844cc0
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144955209%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22740.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144955211%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221173.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144955211%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144955225%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955308%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144955209%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22740.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144955211%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221173.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144955211%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144955225%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955308%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45d3f64ba4212901b76dd5a1fa5cb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-GSuywOEsCsRXIepHQuyRFNqyy4CLIrZB2dnk819lN7k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: FCAD87ADD8E543F6837D8C84AE60EF35 Ref B: LON601060108042 Ref C: 2024-08-20T09:09:19Z
content-length: 0
date: Tue, 20 Aug 2024 09:09:19 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:09:19 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144959.29845ed1
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 17068
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1173
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F673A344805049A49F876E38026177C3 Ref B: LON601060106060 Ref C: 2024-08-20T09:09:19Z
date: Tue, 20 Aug 2024 09:09:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144959.29845ff1
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: ipv6=hit=1724148390983
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144959.29846117
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144955379%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144955380%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724144957257%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144955379%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144955380%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724144957257%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144959.29846118
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1231
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:09:21 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724144961.298475f8
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=33BB2CA90E6D4D5E9A374702C8A60C25&ID=SERP,5207.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D630824c8005c1256JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIwNw%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dyooutub%26u%3Da1aHR0cHM6Ly93d3cueW91dHViZS5jb20v%26ntb%3D1

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=33BB2CA90E6D4D5E9A374702C8A60C25&ID=SERP,5207.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D630824c8005c1256JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIwNw%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dyooutub%26u%3Da1aHR0cHM6Ly93d3cueW91dHViZS5jb20v%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:10:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724145014.29879b14
GET

https://www.bing.com/ck/a?!&&p=630824c8005c1256JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIwNw&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=yooutub&u=a1aHR0cHM6Ly93d3cueW91dHViZS5jb20v&ntb=1

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /ck/a?!&&p=630824c8005c1256JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIwNw&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=yooutub&u=a1aHR0cHM6Ly93d3cueW91dHViZS5jb20v&ntb=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:10:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724145014.29879b15
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:10:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724145016.2987c3cf
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1281
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:10:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.de81655f.1724145017.2987d618
GET

https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144958105%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144958105%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145012905%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145012905%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}]

msedge.exe

Remote address:

95.101.129.194:443

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1133
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.194:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 657
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
DNS

194.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.129.101.95.in-addr.arpa

IN PTR

Response

194.129.101.95.in-addr.arpa

IN PTR

a95-101-129-194deploystaticakamaitechnologiescom
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.218

e86303.dscx.akamaiedge.net

IN A

95.101.129.203

e86303.dscx.akamaiedge.net

IN A

95.101.129.209

e86303.dscx.akamaiedge.net

IN A

95.101.129.219

e86303.dscx.akamaiedge.net

IN A

95.101.129.208

e86303.dscx.akamaiedge.net

IN A

95.101.129.224

e86303.dscx.akamaiedge.net

IN A

95.101.129.226

e86303.dscx.akamaiedge.net

IN A

95.101.129.202
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.234

e86303.dscx.akamaiedge.net

IN A

95.101.129.194

e86303.dscx.akamaiedge.net

IN A

95.101.129.146

e86303.dscx.akamaiedge.net

IN A

95.101.129.147

e86303.dscx.akamaiedge.net

IN A

95.101.129.235

e86303.dscx.akamaiedge.net

IN A

95.101.129.233

e86303.dscx.akamaiedge.net

IN A

95.101.129.232

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.195
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
last-modified: Sat, 04 Feb 2023 02:14:41 GMT
etag: 0x8DB065592FB5754
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bb9e6f67-f01e-000f-3284-2f963d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=150783
expires: Thu, 22 Aug 2024 02:59:29 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790af42
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHUSR=DOB=20240820
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
last-modified: Sat, 04 Feb 2023 02:14:41 GMT
etag: 0x8DB065592FB5754
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 39af0c41-901e-004c-53f3-ef949c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=110522
expires: Wed, 21 Aug 2024 15:48:28 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790af41
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 671
content-type: image/svg+xml
content-md5: 2e0aQjQvN2lVcUGQcPjoGA==
last-modified: Wed, 17 Aug 2022 06:27:13 GMT
etag: 0x8DA801986136A14
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 127e18c8-e01e-0046-7875-ac302b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=123696
expires: Wed, 21 Aug 2024 19:28:02 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 1101
content-type: image/svg+xml
content-md5: kc0Rz8ymXPrOlhUyaNcfYw==
last-modified: Fri, 12 Aug 2022 20:45:00 GMT
etag: 0x8DA7CA3867FC831
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: adc41e54-901e-0086-2e09-15d69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.097b1060.1686747743.2aab8902
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.097b1060.1686747764.2aac12e8
akamai-grn: 0.2a7b1060.1687568922.2d70b24a
akamai-grn: 0.3d7b1060.1689052474.2206a8cd
akamai-grn: 0.21aedd58.1689771282.bd10a3b
cache-control: public, no-transform, max-age=3621733
expires: Tue, 01 Oct 2024 07:08:39 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f2
timing-allow-origin: *
GET

https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 282
content-type: image/svg+xml
content-md5: 44eVtjQVTsH/Qca82lTuUg==
last-modified: Wed, 17 Aug 2022 05:32:54 GMT
etag: 0x8DA8011EF4B96D3
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f7e5ecaf-101e-0038-1cc0-eb4491000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=64144
expires: Wed, 21 Aug 2024 02:55:30 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 20:49:31 GMT
etag: 0x8DA7EFFA703EB5F
akamai-grn: 0.59281102.1714799759.224b2228
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 964
content-type: image/svg+xml
content-md5: iOPtPdfu4TP3P/udNrBLbw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a81edf47-401e-0068-185a-0386c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=9491226
expires: Sun, 08 Dec 2024 05:33:32 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f4
timing-allow-origin: *
GET

https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 1391
content-type: image/svg+xml
content-md5: YgWAZX6KRbSnuEULjaXNMg==
last-modified: Wed, 17 Aug 2022 06:37:27 GMT
etag: 0x8DA801AF3BF6066
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 22530e3a-d01e-00c3-2ce9-28f90b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=254098
expires: Fri, 23 Aug 2024 07:41:24 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 17:39:27 GMT
etag: 0x8DA7EE519EF54EF
akamai-grn: 0.19fd4817.1699775190.19e2dda6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 726
content-type: image/svg+xml
content-md5: ZgHkolq4RyA+EBWzJRSxbA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d46b8e76-f01e-0020-517e-0a9bf6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1efd4817.1701123842.3b4e7f5b
cache-control: public, no-transform, max-age=4768859
expires: Mon, 14 Oct 2024 13:47:25 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f6
timing-allow-origin: *
GET

https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 1111
content-type: image/svg+xml
content-md5: wEyINKyRgCGG5s5neuSonQ==
last-modified: Wed, 17 Aug 2022 05:50:40 GMT
etag: 0x8DA80146A849396
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: af61d57c-101e-00c4-0ae2-ec7195000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=161986
expires: Thu, 22 Aug 2024 06:06:12 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 3791
content-type: image/jpeg
content-md5: KZpHmi9/HzDQlUXKjMXRYg==
last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D074C7E9
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 58e68a11-001e-0071-575a-dfe287000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=250346
expires: Fri, 23 Aug 2024 06:38:52 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D074A0DB
akamai-grn: 0.c2a72917.1717878189.8c9b9ca
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5387
content-type: image/jpeg
content-md5: adFid0+JT/i5IDMON2t6Yg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e6382451-101e-004c-1b5c-9dd51a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=50827
expires: Tue, 20 Aug 2024 23:13:33 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3f9
timing-allow-origin: *
GET

https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 4409
content-type: image/jpeg
content-md5: qYoIvbmbhCLJ3J1v3ZOHww==
last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D074A0DB
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f925a30f-e01e-0085-7d11-09cd8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=251029
expires: Fri, 23 Aug 2024 06:50:15 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3fb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 6817
content-type: image/jpeg
content-md5: DEHuMbBOl4tIgtF2kPA6Og==
last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D074C7E9
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c3a8dc88-201e-0068-084c-8023ba000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=150992
expires: Thu, 22 Aug 2024 03:02:58 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3fa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 4934
content-type: image/jpeg
content-md5: /aLOrgZ5YRk35ucfcBo2qw==
last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D07452CB
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f9a73599-801e-0032-0d9d-d004db000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=299931
expires: Fri, 23 Aug 2024 20:25:17 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3fc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

content-length: 4547
content-type: image/jpeg
content-md5: eu9Mz25HuboDg2XNPR9Wkw==
last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D074EEF0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 07767630-001e-0079-32f5-2c1c75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=392725
expires: Sat, 24 Aug 2024 22:11:51 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3fd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D07479D4
akamai-grn: 0.8a777b5c.1723790898.17ede279
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5944
content-type: image/jpeg
content-md5: 9ucNopg0mtlCFfC0podQNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e1afd16e-c01e-001c-4791-9f56cc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=170368
expires: Thu, 22 Aug 2024 08:25:54 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b3fe
timing-allow-origin: *
GET

https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000

Response

HTTP/2.0 200

last-modified: Tue, 27 Dec 2022 02:26:51 GMT
etag: 0x8DAE7B1D07452CB
akamai-grn: 0.7e8e7b5c.1722452905.e9dfdb3
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3814
content-type: image/jpeg
content-md5: KBVwYR+JIZqXDyWJ+YoJ2w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 86089c20-601e-00a2-729b-997f33000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=150134
expires: Thu, 22 Aug 2024 02:48:40 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144786.1790b41d
timing-allow-origin: *
GET

https://r.bing.com/rp/g2mFaePdYzQOubI8JEItbebrED8.gz.css

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/g2mFaePdYzQOubI8JEItbebrED8.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 389
content-type: text/css; charset=utf-8
content-encoding: gzip
content-md5: 3/vZUXOW4wNHGLr6SU0xpQ==
last-modified: Mon, 01 May 2023 19:01:02 GMT
etag: 0x8DB4A7668AEE2D1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 97a3a4f5-301e-0072-20b3-25e71e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=298432
expires: Fri, 23 Aug 2024 20:00:19 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144787.1790b4a7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_ykiGO1K5rjAQeICdJheT3jfLeY.gz.css

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/_ykiGO1K5rjAQeICdJheT3jfLeY.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 1341
content-type: text/css; charset=utf-8
content-encoding: gzip
content-md5: WX/sslb8tPUCRYKUX1pQ4A==
last-modified: Wed, 14 Feb 2024 22:53:54 GMT
etag: 0x8DC2DAFD2397761
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 54d5239d-d01e-0062-156d-f0c68b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=162908
expires: Thu, 22 Aug 2024 06:21:35 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144787.1790b4b8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Yb-MiHwFpZo4XYbuuNLKCnyhd1M.gz.css

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Yb-MiHwFpZo4XYbuuNLKCnyhd1M.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:00:47 GMT
etag: 0x8DB4A765FC637D2
akamai-grn: 0.15d01702.1710531528.e07820a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 301
content-type: text/css; charset=utf-8
content-encoding: gzip
content-md5: HJS5PMy7uv8AUjv1kxMX/A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2fdd7f7e-801e-0061-433b-6f6669000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=233648
expires: Fri, 23 Aug 2024 02:00:35 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144787.1790b4b6
timing-allow-origin: *
GET

https://r.bing.com/rp/tPLNa5UcMaQEzzg0acZfPM45N6I.gz.css

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/tPLNa5UcMaQEzzg0acZfPM45N6I.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 375
content-type: text/css; charset=utf-8
content-encoding: gzip
content-md5: 5S1KJFL4/jq12fkMTKSaRg==
last-modified: Wed, 31 Jul 2024 02:34:51 GMT
etag: 0x8DCB1095A9DAD8E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 248912dd-d01e-0096-0f14-e30d7d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=250736
expires: Fri, 23 Aug 2024 06:45:23 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144787.1790b4b7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/10e5joITRJEVdubr7Lf4mdAhY-I.br.css

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/10e5joITRJEVdubr7Lf4mdAhY-I.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:06:27.0260247+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-08-20
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3515&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1724144786&WTS=63859741585
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090627

Response

HTTP/2.0 200

content-length: 322
content-type: text/css; charset=utf-8
content-encoding: br
content-md5: xQUOkLB4Uf4NobQbpv02nQ==
last-modified: Mon, 05 Feb 2024 19:26:19 GMT
etag: 0x8DC268054AEEEA4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 191ac6c6-001e-003c-3d2f-e82d6b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=124843
expires: Wed, 21 Aug 2024 19:47:10 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e681655f.1724144787.1790bb83
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/H5PTMCU6CKGhcAMyLGQNXiQfQu8.br.css

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/H5PTMCU6CKGhcAMyLGQNXiQfQu8.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 5554
content-type: text/css; charset=utf-8
content-encoding: br
content-md5: tSAMoHakFjHclR36ccLRaQ==
last-modified: Tue, 13 Aug 2024 10:07:46 GMT
etag: 0x8DCBB7FC7CFE808
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 00ef58e1-601e-0048-48ac-ed199b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b1777b5c.1723575974.77b489a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.a0777b5c.1723578468.32cce7d
cache-control: public, no-transform, max-age=243873
expires: Fri, 23 Aug 2024 04:50:59 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1a21
timing-allow-origin: *
GET

https://r.bing.com/rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 932
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
last-modified: Mon, 22 Jul 2024 21:39:04 GMT
etag: 0x8DCAA96B5AD8068
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 97997870-401e-005f-3b2b-e1b090000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=82779
expires: Wed, 21 Aug 2024 08:06:05 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1cec
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2TaaiuhS8BA-D4cbNcsAamIX63o.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/2TaaiuhS8BA-D4cbNcsAamIX63o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: XICozSV49atMnCnBcmNvXA==
last-modified: Wed, 12 Jun 2024 06:49:39 GMT
etag: 0x8DC8AABD4EBB0BE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0531a381-a01e-0025-6657-c0add0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1177
cache-control: public, no-transform, max-age=261228
expires: Fri, 23 Aug 2024 09:40:14 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1cee
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2426
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: E6VRkNYBWPjLg+NxAtCPwQ==
last-modified: Sat, 20 Jul 2024 02:59:45 GMT
etag: 0x8DCA868026E5F1B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 770c923c-801e-006f-3f1b-e50e5f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=85523
expires: Wed, 21 Aug 2024 08:51:49 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1ce9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: lcdU2mgV428YXbQCQNboBg==
last-modified: Thu, 11 Jul 2024 05:39:00 GMT
etag: 0x8DCA16BC4368DFF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 252f0c3d-601e-00ac-5f34-df1705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8842
akamai-grn: 0.a7257e68.1722409754.10ce08b9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.30d01702.1722670328.c9f5be5
cache-control: public, no-transform, max-age=120425
expires: Wed, 21 Aug 2024 18:33:31 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1cea
timing-allow-origin: *
GET

https://r.bing.com/rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 22 Jul 2024 21:39:04 GMT
etag: 0x8DCAA96B5AE1E74
akamai-grn: 0.4d18dd58.1722865472.e312dd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: BqDy58++KpP6pd5VjlogiA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 352391b1-e01e-0024-4e98-ddf20c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2590
cache-control: public, no-transform, max-age=81486
expires: Wed, 21 Aug 2024 07:44:32 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1ceb
timing-allow-origin: *
GET

https://r.bing.com/rp/ziP8pemc67tw0mIFPEfhzfnzK5M.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/ziP8pemc67tw0mIFPEfhzfnzK5M.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 09 Feb 2024 09:23:43 GMT
etag: 0x8DC2950CF42D5C2
akamai-grn: 0.b5777b5c.1724039185.13ede8dd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: FoisUan6I6x8k5j8xOd43Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e619dfec-a01e-0049-7519-7c07c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 264
vary: Accept-Encoding
cache-control: public, no-transform, max-age=16710
expires: Tue, 20 Aug 2024 13:44:56 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1ced
timing-allow-origin: *
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 25 Mar 2024 20:51:22 GMT
etag: 0x8DC4D0D5492CDFE
akamai-grn: 0.37f06e68.1722664795.df1de1c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: bJNwzHWywBuWP28bX2mBGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 26f7afc0-901e-0042-032d-7ffcaa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 425
cache-control: public, no-transform, max-age=233160
expires: Fri, 23 Aug 2024 01:52:26 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d05
timing-allow-origin: *
GET

https://r.bing.com/rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: oHTxFsclrdk6ioKPvbvVbA==
last-modified: Fri, 09 Aug 2024 08:29:17 GMT
etag: 0x8DCB84D5BB9309A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ec0fbfb0-501e-001e-2c6b-eae874000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 71686
cache-control: public, no-transform, max-age=279956
expires: Fri, 23 Aug 2024 14:52:22 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d18
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 5070
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dbzAhNDtA54biTyiiODCKw==
last-modified: Fri, 28 Jun 2024 18:20:45 GMT
etag: 0x8DC979F0705C8E6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 08908a0e-201e-00ad-6562-de48d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=301793
expires: Fri, 23 Aug 2024 20:56:19 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d16
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iMoAoIUUC66uD9MHJjWv4_hB2I8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/iMoAoIUUC66uD9MHJjWv4_hB2I8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Apr 2023 01:34:24 GMT
etag: 0x8DB363F0DFEA7E9
akamai-grn: 0.a1777b5c.1723867089.c7499d5
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: w8DrXgREl1d77JG1lw9tMA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 45b61563-e01e-0058-7d02-689d75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 65739
vary: Accept-Encoding
cache-control: public, no-transform, max-age=86856
expires: Wed, 21 Aug 2024 09:14:02 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d17
timing-allow-origin: *
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: l5PXwpOyUFdqY44wmnrCag==
last-modified: Wed, 17 Aug 2022 06:38:42 GMT
etag: 0x8DA801B209CE9AE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 242380fc-101e-005a-3d49-0686b6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 467
cache-control: public, no-transform, max-age=272857
expires: Fri, 23 Aug 2024 12:54:03 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d48
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1rUTIFRcUHTZUBaDs_0q8KvUlR0.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/1rUTIFRcUHTZUBaDs_0q8KvUlR0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2704
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: uPBUJIO4GUy5hHrMPulrgA==
last-modified: Thu, 30 May 2024 06:05:20 GMT
etag: 0x8DC806E7C689F6C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6f126fdd-d01e-0096-5063-ba0d7d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=84836
expires: Wed, 21 Aug 2024 08:40:22 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d49
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/rGQjmbazvzD-CcF-Vey7tXdAKf8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/rGQjmbazvzD-CcF-Vey7tXdAKf8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: x52O9P0kMb+c5f3uC3pEvw==
last-modified: Tue, 13 Aug 2024 07:40:47 GMT
etag: 0x8DCBB6B3F5FC911
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b284cdf5-c01e-001c-6682-ed56cc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 44513
cache-control: public, no-transform, max-age=230526
expires: Fri, 23 Aug 2024 01:08:32 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d54
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LWdKiClTSV7CFiSJsNQTbFbINRk.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/LWdKiClTSV7CFiSJsNQTbFbINRk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: S5GmRHcle2qmCgkFax/01A==
last-modified: Tue, 16 Jul 2024 22:42:49 GMT
etag: 0x8DCA5E89EB26B41
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 73a8279f-801e-009b-7ed3-dbc5a9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1985
cache-control: public, no-transform, max-age=261181
expires: Fri, 23 Aug 2024 09:39:27 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d55
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/eFvpkjNdxwu0RkDoltL0Qri3DLg.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/eFvpkjNdxwu0RkDoltL0Qri3DLg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 835
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ht6rOOfSQMJjPrL4qyjbDg==
last-modified: Fri, 09 Aug 2024 15:45:45 GMT
etag: 0x8DCB88A55640AD4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 70d58dac-201e-0066-629c-ed4b8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=241786
expires: Fri, 23 Aug 2024 04:16:12 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d57
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 30 Jun 2021 06:36:05 GMT
etag: 0x8D93B91568DF318
akamai-grn: 0.521a1202.1724088277.375333cb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 806
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cc8b1264-201e-0066-5897-dd4b8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, max-age=13199
expires: Tue, 20 Aug 2024 12:46:25 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d80
timing-allow-origin: *
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 156
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
last-modified: Wed, 17 Aug 2022 05:18:49 GMT
etag: 0x8DA800FF7F6EFE0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6f28a4a5-101e-004c-3ed6-7cd51a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=123414
expires: Wed, 21 Aug 2024 19:23:20 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d81
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 06:06:36 GMT
etag: 0x8DA8016A4AEB24C
akamai-grn: 0.a1777b5c.1724045675.d6d7891
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: application/x-javascript; charset=utf-8
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2978b574-101e-0075-72a8-f78b7d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 393
vary: Accept-Encoding
cache-control: public, no-transform, max-age=12404
expires: Tue, 20 Aug 2024 12:33:10 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d82
timing-allow-origin: *
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 05:22:07 GMT
etag: 0x8DA80106D9140B6
akamai-grn: 0.65361602.1720725487.5564cdf
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: application/x-javascript; charset=utf-8
content-md5: rimZQyGjXssDEnuSlgMaJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 157b03b8-601e-00f9-6832-3ce373000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 321
cache-control: public, no-transform, max-age=189651
expires: Thu, 22 Aug 2024 13:47:17 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d83
timing-allow-origin: *
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 312
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
last-modified: Wed, 22 May 2024 10:59:38 GMT
etag: 0x8DC7A4E463C1AA1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7685622d-201e-0004-31c2-b089ab000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.60ba1302.1724135891.3e8d721b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=164445
expires: Thu, 22 Aug 2024 06:47:11 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d84
timing-allow-origin: *
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 492
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
last-modified: Wed, 17 Aug 2022 06:27:54 GMT
etag: 0x8DA80199E3F8B92
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 97d9e356-401e-0084-8013-e376ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=75481
expires: Wed, 21 Aug 2024 06:04:27 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d85
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1532
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FXbNzL5WiMdS7y/N9ZEDfg==
last-modified: Wed, 21 Jun 2023 19:04:23 GMT
etag: 0x8DB728A53C05A59
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e4aab6c8-a01e-0068-2cc8-e3623c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=84752
expires: Wed, 21 Aug 2024 08:38:58 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d86
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 15 Sep 2022 21:37:34 GMT
etag: 0x8DA97628074CD66
akamai-grn: 0.96777b5c.1723883624.b69589
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: YJcbeBoyJrUd/JMws9hIjA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bc5df5ce-801e-0083-776d-ebfe33000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1240
vary: Accept-Encoding
cache-control: public, no-transform, max-age=82878
expires: Wed, 21 Aug 2024 08:07:44 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d87
timing-allow-origin: *
GET

https://r.bing.com/rp/Gw7eETSwe7GHmKwW1lRqGPQJXRo.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Gw7eETSwe7GHmKwW1lRqGPQJXRo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: cbryIH17LuJqgju0sWrerw==
last-modified: Thu, 04 Jan 2024 20:52:59 GMT
etag: 0x8DC0D6722D2BE26
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b89c1229-201e-00bd-4cf0-db8db1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 660
cache-control: public, no-transform, max-age=283799
expires: Fri, 23 Aug 2024 15:56:25 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d88
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 437
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Sat, 10 Aug 2024 08:42:31 GMT
x-eventid: 66b85395dc1943d7b90d5be4ed426a19
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E0D3
x-as-suppresssetcookie: 1
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cache-control: public, max-age=412690
expires: Sun, 25 Aug 2024 03:44:36 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d89
timing-allow-origin: *
GET

https://r.bing.com/rs/6r/xj/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rs/6r/xj/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 772
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yaTET5I1fmUKhVemn0wu5w==
last-modified: Wed, 14 Feb 2024 19:38:07 GMT
etag: 0x8DC2D947800DADE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 26a8b2b1-b01e-00af-343c-eaf661000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=297349
expires: Fri, 23 Aug 2024 19:42:15 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d8a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 7040
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: WMwYK/n0LTk+0JcmPhtDwQ==
last-modified: Wed, 07 Aug 2024 07:31:50 GMT
etag: 0x8DCB6B300D81970
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f2e68642-101e-00c4-1bc1-e87195000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=121372
expires: Wed, 21 Aug 2024 18:49:18 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Cg0Fx_6iq4GfMQyER4CqKFOWfG4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Cg0Fx_6iq4GfMQyER4CqKFOWfG4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
last-modified: Tue, 06 Jun 2023 10:30:54 GMT
etag: 0x8DB66791BAB4052
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 80eadbdb-a01e-0070-73ee-1e59a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 160
cache-control: public, no-transform, max-age=417724
expires: Sun, 25 Aug 2024 05:08:30 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 7995
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dj9RX5P2rQJ32w4xAIOGOg==
last-modified: Fri, 08 Sep 2023 00:55:30 GMT
etag: 0x8DBB0064CD088EE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 72b5ad97-401e-000a-3551-ea44e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=102458
expires: Wed, 21 Aug 2024 13:34:04 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/s3ydRDPqMugP_EjrunOTC4bo_Ac.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/s3ydRDPqMugP_EjrunOTC4bo_Ac.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 144
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: lPPEYpV9m+rGK/3zoR6bsQ==
last-modified: Thu, 18 Apr 2024 10:26:26 GMT
etag: 0x8DC5F9200E5A695
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 62f67af3-701e-0036-5244-eb89dc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=379631
expires: Sat, 24 Aug 2024 18:33:37 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IPjqENt_x1c56fZCsFxov2V2J84.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/IPjqENt_x1c56fZCsFxov2V2J84.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: 3oJXdoKCccwZtecuhRR/nw==
last-modified: Thu, 09 Nov 2023 08:38:27 GMT
etag: 0x8DBE0FF3E5AED48
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 10452ed2-401e-001a-48df-2c818e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 621
cache-control: public, no-transform, max-age=273168
expires: Fri, 23 Aug 2024 12:59:14 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/3US3nNU_RgsSNFm9Bzw6xgeuOHk.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/3US3nNU_RgsSNFm9Bzw6xgeuOHk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: eh63mOkIBbFjgAwCOpOf1w==
last-modified: Thu, 29 Feb 2024 04:34:08 GMT
etag: 0x8DC38DFAB63CF33
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 24060e82-a01e-001a-3103-e26573000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 854
cache-control: public, no-transform, max-age=172831
expires: Thu, 22 Aug 2024 09:06:57 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: fr82fvtvcsicFIwsSPlj7g==
last-modified: Fri, 11 Aug 2023 12:48:58 GMT
etag: 0x8DB9A6954A9FE01
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a981869b-801e-0050-4675-cbc6fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=255070
expires: Fri, 23 Aug 2024 07:57:36 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 241
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Sat, 10 Aug 2024 08:42:26 GMT
x-eventid: 66b8730dc602491bb9757d983d998f02
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E045
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-JnkeoEFaD9ERaRbSIpYQLFjCkTUvraCz1HIZ8FW1PrE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=248239
expires: Fri, 23 Aug 2024 06:03:45 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da8
timing-allow-origin: *
GET

https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 174
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +jWBJey2nJqR+pG7G7E28A==
last-modified: Wed, 17 Aug 2022 06:26:50 GMT
etag: 0x8DA801978517195
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6c04010a-601e-00bc-4a7e-e9d26d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=181967
expires: Thu, 22 Aug 2024 11:39:13 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1da9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 507
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tm502hkAmxWuxzxBM7uX9A==
last-modified: Fri, 15 Mar 2024 03:00:13 GMT
etag: 0x8DC449C08B165CD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2638d909-401e-004f-0549-d775f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=162203
expires: Thu, 22 Aug 2024 06:09:49 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1daa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript; charset=utf-8
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
last-modified: Wed, 17 Aug 2022 05:16:17 GMT
etag: 0x8DA800F9D12D39D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8ac615ed-401e-0078-5788-3143a9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 415
cache-control: public, no-transform, max-age=314890
expires: Sat, 24 Aug 2024 00:34:36 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dab
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 486
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: isSXzX/W/NGLzoHAAcAxAw==
last-modified: Wed, 09 Aug 2023 15:27:29 GMT
etag: 0x8DB98ED24F28723
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 33fe9d84-e01e-00d8-4b4e-eac708000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=384588
expires: Sat, 24 Aug 2024 19:56:14 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dac
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/JigriHckblqcu1XwKpT4wumVS2k.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/JigriHckblqcu1XwKpT4wumVS2k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 06:04:41 GMT
etag: 0x8DA801660363690
akamai-grn: 0.04071002.1721837129.1b1fefdd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: application/x-javascript; charset=utf-8
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d2ee816a-201e-00f8-6ef7-2cbcaf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 419
cache-control: public, no-transform, max-age=50194
expires: Tue, 20 Aug 2024 23:03:00 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dad
timing-allow-origin: *
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 14:14:45 GMT
etag: 0x8DC86330435B833
akamai-grn: 0.0dd01702.1719662962.6adf227
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: Nxjfu3FuQxhf33rq+sYskQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1ea23aaa-a01e-0078-71d1-bba754000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 231
cache-control: public, no-transform, max-age=60735
expires: Wed, 21 Aug 2024 01:58:41 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de1
timing-allow-origin: *
GET

https://r.bing.com/rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 446
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: wMjND6gwy3LKsXBo8Ww74w==
last-modified: Wed, 17 Aug 2022 07:07:40 GMT
etag: 0x8DA801F2C4C11E6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b5eface0-301e-0018-6a87-efdbcb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.591a1202.1723835407.ba9685a0
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=64073
expires: Wed, 21 Aug 2024 02:54:19 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de2
timing-allow-origin: *
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 07 May 2024 17:04:47 GMT
etag: 0x8DC6EB7CCE4008D
akamai-grn: 0.95257e68.1722001664.2d640b78
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: OuXcJlOLJ5YKncHzThxbVw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 358d383a-401e-0060-5e40-a17833000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11731
cache-control: public, no-transform, max-age=141277
expires: Thu, 22 Aug 2024 00:21:03 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de3
timing-allow-origin: *
GET

https://r.bing.com/rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 05:37:09 GMT
etag: 0x8DA8012871F1AB6
akamai-grn: 0.521a1202.1720022713.2d90c29a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d8add386-601e-00a2-69ee-507f33000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 738
cache-control: public, no-transform, max-age=92260
expires: Wed, 21 Aug 2024 10:44:06 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1d7f
timing-allow-origin: *
GET

https://r.bing.com/rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 01 Nov 2022 22:37:14 GMT
etag: 0x8DABC599FC7792B
akamai-grn: 0.b0777b5c.1724053788.bf64f5b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: cQ12N8x+IbYv0+/mq6H9Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 41dffa2d-a01e-002d-2842-045322000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 66669
vary: Accept-Encoding
cache-control: public, no-transform, max-age=328175
expires: Sat, 24 Aug 2024 04:16:01 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de4
timing-allow-origin: *
GET

https://r.bing.com/rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 26 May 2023 14:44:56 GMT
etag: 0x8DB5DF7C626EC15
akamai-grn: 0.ae777b5c.1723702056.7bd9fa1
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: dqPx6aRSVk4Pjc5sDuER6A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b8db4e91-901e-007b-1a7d-eca2cd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 19997
cache-control: public, no-transform, max-age=25789
expires: Tue, 20 Aug 2024 16:16:15 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de5
timing-allow-origin: *
GET

https://r.bing.com/rp/yOU5_vGeE7HIs09fec6ZV9prLO4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/yOU5_vGeE7HIs09fec6ZV9prLO4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 362
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: q83g5aHD87qKY5PFltDJjw==
last-modified: Tue, 24 Jan 2023 22:05:44 GMT
etag: 0x8DAFE5723EAECBE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f37bc132-901e-00b8-5cc5-ef5f6a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=90573
expires: Wed, 21 Aug 2024 10:15:59 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mJ8ysAgJo97kNjxDuPA-UMTqWCs.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/mJ8ysAgJo97kNjxDuPA-UMTqWCs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 194
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: EjoR7nN8y4VnO+oBKLNKkg==
last-modified: Wed, 10 Jul 2024 19:33:34 GMT
etag: 0x8DCA117304AD97C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b9cce326-d01e-003f-42a6-f0cc0f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=187175
expires: Thu, 22 Aug 2024 13:06:01 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 3501
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FOSg83CHS0e4hPgLfMT99Q==
last-modified: Fri, 20 Oct 2023 23:58:35 GMT
etag: 0x8DBD1C878DF6220
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: eecd180b-201e-0023-45ea-037a92000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=133509
expires: Wed, 21 Aug 2024 22:11:35 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1de8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 05:27:07 GMT
etag: 0x8DA801120BEDFE9
akamai-grn: 0.7618dd58.1722145251.a824bce
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: application/x-javascript; charset=utf-8
content-md5: rqa21C4TqvhBKaqsPZN5dA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1c9195b6-301e-0080-1a06-6eba2c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 808
cache-control: public, no-transform, max-age=246022
expires: Fri, 23 Aug 2024 05:26:48 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dea
timing-allow-origin: *
GET

https://r.bing.com/rp/9YAQCrq1aCvJQNyORXytYpPYETs.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/9YAQCrq1aCvJQNyORXytYpPYETs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: a7czJOvhtOf+GXhyEwQDiA==
last-modified: Wed, 20 Mar 2024 11:04:55 GMT
etag: 0x8DC48CD9331DB88
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b46d0ef-501e-003f-6109-8f8d89000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 615
cache-control: public, no-transform, max-age=219351
expires: Thu, 22 Aug 2024 22:02:17 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1df7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8Flh1qH2jCe9nv7Pa_33TiCpQ8Q.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/8Flh1qH2jCe9nv7Pa_33TiCpQ8Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: sF7jLd9+KD7OadI1O6mOIQ==
last-modified: Thu, 11 Jul 2024 12:38:02 GMT
etag: 0x8DCA1A64E22B4B8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 30b0ea34-a01e-00b3-761c-d6a401000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 478
cache-control: public, no-transform, max-age=55416
expires: Wed, 21 Aug 2024 00:30:02 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dfa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Q1Z1cF6gZCkTBd0Gx8Q7LjbPAlQ.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Q1Z1cF6gZCkTBd0Gx8Q7LjbPAlQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2243
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zuFQz1oRxyQdhJXdK95hOQ==
last-modified: Fri, 26 Apr 2024 20:53:19 GMT
etag: 0x8DC6632E78BC07B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 611e67ee-701e-0028-3be2-9b2482000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=85788
expires: Wed, 21 Aug 2024 08:56:14 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dfb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/k_1vDJ7YnYEjL9Qod9Nov34mjlg.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/k_1vDJ7YnYEjL9Qod9Nov34mjlg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2441
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: SLrgFOOBAijruLaarY5t1Q==
last-modified: Tue, 03 Oct 2023 06:34:32 GMT
etag: 0x8DBC3DACD8983EB
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 96e9356e-701e-0087-6b01-307334000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=385482
expires: Sat, 24 Aug 2024 20:11:08 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dfc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 163
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: ntZPQ0NwSl+Oa0DwbVn/yQ==
last-modified: Wed, 17 Aug 2022 05:24:35 GMT
etag: 0x8DA8010C627AB3C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6e4778c7-501e-0021-05da-eb20d7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=81738
expires: Wed, 21 Aug 2024 07:48:44 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dfd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/P7qz8YHLATpo17hAsEzFw25VM0w.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/P7qz8YHLATpo17hAsEzFw25VM0w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript; charset=utf-8
content-md5: 2B3iiL3g1ekAvmatGHsUOQ==
last-modified: Wed, 17 Aug 2022 05:53:13 GMT
etag: 0x8DA8014C6020416
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7cd11901-a01e-0035-53a6-e968b8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 198
cache-control: public, no-transform, max-age=195301
expires: Thu, 22 Aug 2024 15:21:27 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dfe
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: TJJLjTJdafNm/EE7zNTGjw==
last-modified: Thu, 15 Sep 2022 21:37:04 GMT
etag: 0x8DA97626E89520E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 226715f7-501e-007c-5be6-c12a53000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1336
cache-control: public, no-transform, max-age=81556
expires: Wed, 21 Aug 2024 07:45:42 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1dff
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript; charset=utf-8
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
last-modified: Wed, 17 Aug 2022 07:00:57 GMT
etag: 0x8DA801E3C3632A3
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4203a2fb-701e-00a0-3b2d-b3800d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 257
cache-control: public, no-transform, max-age=127257
expires: Wed, 21 Aug 2024 20:27:23 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e00
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 4674
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BPyOi7Ua4VjrwhCEYjxU+w==
last-modified: Thu, 15 Sep 2022 21:38:04 GMT
etag: 0x8DA9762923DF33A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ae266b62-f01e-0091-78fd-ef611e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=114504
expires: Wed, 21 Aug 2024 16:54:50 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e01
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 320
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: DXeqkh2i/zZTwJ5wkgDOdw==
last-modified: Wed, 17 Aug 2022 05:19:49 GMT
etag: 0x8DA80101B450355
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4a9ef046-501e-00a9-60a9-7e8458000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=81784
expires: Wed, 21 Aug 2024 07:49:30 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e02
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
last-modified: Wed, 17 Aug 2022 05:46:46 GMT
etag: 0x8DA8013DF63F8CE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6c4122b1-b01e-0039-3ad8-efffb0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=98693
expires: Wed, 21 Aug 2024 12:31:19 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e03
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/td/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rs/6r/td/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 182
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Sat, 10 Aug 2024 08:42:31 GMT
x-eventid: 66b8155cfd7e4518bbcb825811a178fc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E07A
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-PWHv5wPyraJuJXSIwLGxql1x3ZEr4UCC1bSG7zVR3ps='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=217304
expires: Thu, 22 Aug 2024 21:28:10 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e04
timing-allow-origin: *
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 05:38:18 GMT
etag: 0x8DA8012B05BBF3C
akamai-grn: 0.a9777b5c.1724117689.11ef1f8a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: application/x-javascript; charset=utf-8
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b4dacd9e-c01e-0066-7b73-31af71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 205
vary: Accept-Encoding
cache-control: public, no-transform, max-age=168941
expires: Thu, 22 Aug 2024 08:02:07 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e05
timing-allow-origin: *
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1824
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
last-modified: Tue, 06 Aug 2024 02:50:45 GMT
etag: 0x8DCB5C29225A529
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b63a12f0-601e-0005-11d0-e7d677000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=122921
expires: Wed, 21 Aug 2024 19:15:07 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e06
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: CnBe2qUSynWF62FiKAsEfg==
last-modified: Wed, 15 May 2024 07:41:09 GMT
etag: 0x8DC74B262E7E0D6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9b5a049a-701e-0026-783e-de4cb4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1133
cache-control: public, no-transform, max-age=113739
expires: Wed, 21 Aug 2024 16:42:05 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e07
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript; charset=utf-8
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
last-modified: Wed, 17 Aug 2022 06:08:21 GMT
etag: 0x8DA8016E370A675
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 67449803-601e-0015-4ac9-d9131f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 632
cache-control: public, no-transform, max-age=213724
expires: Thu, 22 Aug 2024 20:28:30 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e09
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5cNYI-KHtSpU1cTpIG4CXkdsXFg.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/5cNYI-KHtSpU1cTpIG4CXkdsXFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1942
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PWt/YsjfkfCEyi00bxgjZA==
last-modified: Wed, 10 Apr 2024 12:06:33 GMT
etag: 0x8DC5956AA455BF0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4b0ccdd9-b01e-0074-29e6-d9305c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=82221
expires: Wed, 21 Aug 2024 07:56:47 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e0b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 12 Jun 2023 12:03:32 GMT
etag: 0x8DB6B3D0B11DF34
akamai-grn: 0.8071002.1722756293.6ad7b024
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: MH86c+Cw/X3ukvifBPzDeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ac004276-b01e-007a-4ef8-7e586a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1702
akamai-grn: 0.f071002.1722855375.7fe6450e
vary: Accept-Encoding
akamai-grn: 0.60ba1302.1724049060.250b2803
cache-control: public, no-transform, max-age=18153
expires: Tue, 20 Aug 2024 14:08:59 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e0e
timing-allow-origin: *
GET

https://r.bing.com/rp/kNUdPzzLEbQzYr3icm3MTxwk6-Y.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/kNUdPzzLEbQzYr3icm3MTxwk6-Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1863
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: nr9dytJCAtZrkdlxzmBpIg==
last-modified: Tue, 27 Dec 2022 08:56:39 GMT
etag: 0x8DAE7E8448B0484
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ac898db0-001e-004e-44fc-db2a24000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=289630
expires: Fri, 23 Aug 2024 17:33:36 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e10
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1981
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cjiiNPsYSsV3a8xOZhlPWw==
last-modified: Mon, 13 Mar 2023 07:22:29 GMT
etag: 0x8DB2393B40E724D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 22dcaf2c-901e-00a8-3855-be9a02000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=125840
expires: Wed, 21 Aug 2024 20:03:46 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e13
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jBIkCV7jrEq13WeSObdKprQ65HI.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/jBIkCV7jrEq13WeSObdKprQ65HI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 04:14:27 GMT
etag: 0x8DC85DF282B92EE
akamai-grn: 0.85777b5c.1724085179.f884698
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: g6lRCH6t4AZcQ/vnir5miQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ae632ea1-f01e-005a-4b1e-b8624b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1419
vary: Accept-Encoding
cache-control: public, no-transform, max-age=304498
expires: Fri, 23 Aug 2024 21:41:24 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e33
timing-allow-origin: *
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 05:48:11 GMT
etag: 0x8DA801411D19CBC
akamai-grn: 0.04071002.1721445199.a56fa2b5
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: application/x-javascript; charset=utf-8
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6d8b2b23-401e-00c1-3d01-2c47b3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 109
cache-control: public, no-transform, max-age=250092
expires: Fri, 23 Aug 2024 06:34:38 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e37
timing-allow-origin: *
GET

https://r.bing.com/rp/e5E3S-lkItFHIqVf6KjzTWPZb6Y.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/e5E3S-lkItFHIqVf6KjzTWPZb6Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: znoueNHGlInvtcdG07bAhA==
last-modified: Fri, 26 Jan 2024 14:29:34 GMT
etag: 0x8DC1E7B37A4D1B3
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fe421f7b-a01e-0076-1694-6ccf62000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 798
cache-control: public, no-transform, max-age=44422
expires: Tue, 20 Aug 2024 21:26:48 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e38
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IdUTPeerhJUBvXEe7f4gFEe3qoI.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/IdUTPeerhJUBvXEe7f4gFEe3qoI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Mar 2024 08:37:10 GMT
etag: 0x8DC4A4B43CA21E9
akamai-grn: 0.65361602.1721319604.14098af5
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: Tj6LtYle2petWtH12ggzEg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d90efd0a-901e-000f-7259-7c3346000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2733
cache-control: public, no-transform, max-age=165371
expires: Thu, 22 Aug 2024 07:02:37 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e39
timing-allow-origin: *
GET

https://r.bing.com/rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2391
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DwfcvNDY4cp/xtPCgBZRvg==
last-modified: Mon, 29 Apr 2024 12:37:36 GMT
etag: 0x8DC6849269A219F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a4d9695c-201e-0049-5e8e-f04647000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=177111
expires: Thu, 22 Aug 2024 10:18:17 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e3a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/BeEJtR7xhnHImQ8GRaJw8GQi-wU.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/BeEJtR7xhnHImQ8GRaJw8GQi-wU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: dHgPDBSa/pUCQwXhFbdzIQ==
last-modified: Tue, 06 Aug 2024 12:42:20 GMT
etag: 0x8DCB61536A0EB01
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5e230b1f-601e-00ac-64f8-ea1705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11211
cache-control: public, no-transform, max-age=341711
expires: Sat, 24 Aug 2024 08:01:37 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e3b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 494
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: I/KVjWbAxZXfBeLqiVYi3w==
last-modified: Mon, 14 Aug 2023 05:58:20 GMT
etag: 0x8DB9C8B763711CF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ecb4b114-801e-0040-40be-e90394000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=75997
expires: Wed, 21 Aug 2024 06:13:03 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e3c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UN9xcso94nLdqnqVgMqAEitGHyU.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/UN9xcso94nLdqnqVgMqAEitGHyU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1870
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: suZ7TWNlbcLK462g1BUphA==
last-modified: Tue, 13 Aug 2024 04:02:20 GMT
etag: 0x8DCBB4CBAEEA424
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6f8e0de5-d01e-0086-3472-edc815000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.5eba1302.1723554584.41c016cb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=218080
expires: Thu, 22 Aug 2024 21:41:06 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e3d
timing-allow-origin: *
GET

https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 172
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TLwZhqYro/p02/6N++ZW5g==
last-modified: Wed, 17 Aug 2022 06:10:11 GMT
etag: 0x8DA801724C37354
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8c6606c2-501e-00bf-7a26-2fd7f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=138763
expires: Wed, 21 Aug 2024 23:39:09 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e3e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/XvPs3zdtm8Xfl-ujR40Xu7FW0LI.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/XvPs3zdtm8Xfl-ujR40Xu7FW0LI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: CSVeibf2oORAtuBGI1XXTQ==
last-modified: Wed, 17 Aug 2022 06:10:38 GMT
etag: 0x8DA801734A12D29
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bcab523b-701e-0011-0e03-ec7ae5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 448
cache-control: public, no-transform, max-age=267448
expires: Fri, 23 Aug 2024 11:23:54 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e3f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Bq5XLXS2IAyPVC8Nn9yIeT6NYOE.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Bq5XLXS2IAyPVC8Nn9yIeT6NYOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 24 May 2024 14:53:00 GMT
etag: 0x8DC7C0134D20542
akamai-grn: 0.521a1202.1723946232.63fbaea
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: /q1AKei27z0dkd5RzxvRAg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bab95336-c01e-00b5-738d-b197be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2612
cache-control: public, no-transform, max-age=183332
expires: Thu, 22 Aug 2024 12:01:58 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e40
timing-allow-origin: *
GET

https://r.bing.com/rp/Mk2QDFL5CZREW5g-4w4mtqCEhHc.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Mk2QDFL5CZREW5g-4w4mtqCEhHc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2094
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: maFFV1qU9PwIj5/mBnNp7w==
last-modified: Fri, 09 Aug 2024 13:23:08 GMT
etag: 0x8DCB87669010849
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7e5d561a-e01e-0034-207f-ed3764000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=297241
expires: Fri, 23 Aug 2024 19:40:27 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e41
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5WEwQve87H0O12hmcE3ZlbmonJA.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/5WEwQve87H0O12hmcE3ZlbmonJA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: qP+t1TqWQPDFUdnaBN33SQ==
last-modified: Mon, 01 Apr 2024 17:26:13 GMT
etag: 0x8DC5270D43F415D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: da358211-101e-005c-69c8-841072000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1212
cache-control: public, no-transform, max-age=210481
expires: Thu, 22 Aug 2024 19:34:27 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e42
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/y1tiMssL1_ZRGIkBjxDYmR2kX8o.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/y1tiMssL1_ZRGIkBjxDYmR2kX8o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 146
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: Mu+4u1+ZO0orsL04es/kgA==
last-modified: Wed, 17 Aug 2022 07:04:56 GMT
etag: 0x8DA801ECA858075
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2849e977-601e-0067-7e4e-c21450000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=125647
expires: Wed, 21 Aug 2024 20:00:33 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e43
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8w26ODmd1hk4C30WJtfkdBYFSfE.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/8w26ODmd1hk4C30WJtfkdBYFSfE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Sat, 04 Jun 2022 00:11:59 GMT
etag: 0x8DA45BED7C5BCF7
akamai-grn: 0.17ff1302.1717968365.40d4d095
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: RyGzYQ1bPsIUh6P5T7D2GQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 160912d0-601e-008d-7940-6572f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 335
cache-control: public, max-age=90279
expires: Wed, 21 Aug 2024 10:11:05 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e44
timing-allow-origin: *
GET

https://r.bing.com/rp/AsdMf7D6KLdP5SQOeuSIZtV8-sA.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/AsdMf7D6KLdP5SQOeuSIZtV8-sA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2034
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: JuCBhPh6xDth0S/5BnDYIA==
last-modified: Tue, 02 Apr 2024 07:46:40 GMT
etag: 0x8DC52E908D3E7D0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b980a39d-801e-00a4-43d8-eb0d0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=125769
expires: Wed, 21 Aug 2024 20:02:35 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e45
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: ayFkEznj0BrDPAjm17AJAQ==
last-modified: Thu, 25 Jul 2024 15:06:15 GMT
etag: 0x8DCACBB549B8B5D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ce59a6e2-f01e-0081-0411-dfa476000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3750
cache-control: public, no-transform, max-age=203323
expires: Thu, 22 Aug 2024 17:35:09 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e46
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 705
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rG7VUMX4iQJJxBP5sPK0bw==
last-modified: Tue, 04 Oct 2022 19:01:21 GMT
etag: 0x8DAA63AD3576FC3
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d693d99b-301e-00a9-0511-1e2123000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=243814
expires: Fri, 23 Aug 2024 04:50:00 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e47
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 526
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OE66trga7eniXfEauP76xA==
last-modified: Fri, 05 Jul 2024 19:27:14 GMT
etag: 0x8DC9D2879BBCA37
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6e77a7de-501e-000e-31fa-ef2d1c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=113494
expires: Wed, 21 Aug 2024 16:38:00 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e48
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 823
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: OWtJIHWEErxydxBW1ciLxw==
last-modified: Wed, 17 Aug 2022 06:53:44 GMT
etag: 0x8DA801D3A54FAD4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 509f0680-b01e-0037-1a1c-669786000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=91483
expires: Wed, 21 Aug 2024 10:31:09 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e49
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 19 Apr 2024 09:42:54 GMT
etag: 0x8DC60551690C34A
akamai-grn: 0.9d257e68.1721365980.1fcb56ab
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: ofKtvEh5ABtGyUoMNka3Xw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf6781d6-001e-000d-19a4-928dfe000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 852
cache-control: public, no-transform, max-age=174802
expires: Thu, 22 Aug 2024 09:39:48 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e4a
timing-allow-origin: *
GET

https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 620
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BEMV1uDaLjBHWgMuX8vJ2g==
last-modified: Fri, 19 Apr 2024 09:42:54 GMT
etag: 0x8DC60551690C34A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 639e2c87-101e-0063-4484-96d8d1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=299604
expires: Fri, 23 Aug 2024 20:19:50 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e4b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: cwdNdlabWDC1hjuwYmzczw==
last-modified: Tue, 29 Aug 2023 06:54:02 GMT
etag: 0x8DBA85CBAD2C1A2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5b9eced7-e01e-00d8-5c97-efc708000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1225
cache-control: public, no-transform, max-age=141602
expires: Thu, 22 Aug 2024 00:26:28 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e6a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript; charset=utf-8
content-md5: R0hRHsurcD1pLX+6Vf4lXQ==
last-modified: Wed, 17 Aug 2022 06:57:26 GMT
etag: 0x8DA801DBE7E5F85
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1e0337a5-f01e-007d-0980-039172000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 688
cache-control: public, no-transform, max-age=302047
expires: Fri, 23 Aug 2024 21:00:33 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e6c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 09 Nov 2023 08:38:27 GMT
etag: 0x8DBE0FF3E5BA097
akamai-grn: 0.7d257e68.1720410684.17dbbc9b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a809be5e-901e-0011-294a-b09e18000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1143
akamai-grn: 0.88a72917.1720411539.18963d5d
vary: Accept-Encoding
akamai-grn: 0.53ba1302.1724060845.eddfb7b
cache-control: public, no-transform, max-age=22536
expires: Tue, 20 Aug 2024 15:22:02 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e6e
timing-allow-origin: *
GET

https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 468
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: Hld4hrLTgdOY14/WVAnFqg==
last-modified: Wed, 17 Aug 2022 05:39:53 GMT
etag: 0x8DA8012E93D38A8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 05e93f5a-401e-002d-48a0-efb7df000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=74621
expires: Wed, 21 Aug 2024 05:50:07 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e70
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1050
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4a3fKAPxT8n6JSY4NlwK9Q==
last-modified: Thu, 11 Jan 2024 22:51:23 GMT
etag: 0x8DC12F7D61A2E2B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: afbe3b71-601e-0067-68dc-f21450000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=430219
expires: Sun, 25 Aug 2024 08:36:45 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c1e72
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mJUKbhysGPVV0f_zho_k3BkdtlU.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/mJUKbhysGPVV0f_zho_k3BkdtlU.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 247
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: 7JvW+NJmxA/Lpn4O+NJgxw==
last-modified: Mon, 01 May 2023 19:02:50 GMT
etag: 0x8DB4A76A8FA2349
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ba5936d6-d01e-005d-516a-df0e28000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=277810
expires: Fri, 23 Aug 2024 14:16:36 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c253a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/43BJuM7qM_8Wd1WfIZM2_oK9zrw.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/43BJuM7qM_8Wd1WfIZM2_oK9zrw.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 265
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: 8u8SHh8Zl2x2Dd4fQ+ehYQ==
last-modified: Sat, 17 Aug 2024 02:39:11 GMT
etag: 0x8DCBE65C6C9BDB6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f828ef2f-001e-0061-0469-f027ef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
akamai-grn: 0.c3777b5c.1723878804.629341f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=161051
expires: Thu, 22 Aug 2024 05:50:37 GMT
date: Tue, 20 Aug 2024 09:06:26 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144786.2c9c2539
timing-allow-origin: *
GET

https://r.bing.com/rp/00hi45gaLPp-E7lytQTnu_LRYY0.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/00hi45gaLPp-E7lytQTnu_LRYY0.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 3853
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: 2989Tj1E1kqP2U+Csz5eOQ==
last-modified: Tue, 13 Aug 2024 23:41:29 GMT
etag: 0x8DCBBF174285402
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 89a97446-501e-00a7-2593-f1ec6e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=288977
expires: Fri, 23 Aug 2024 17:22:44 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144787.2c9c2689
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/pCjAnNfKRza-LKbFI9VevrRjIwc.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/pCjAnNfKRza-LKbFI9VevrRjIwc.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 356
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: wtaROTq70Yqr9XujW7jSFg==
last-modified: Mon, 01 May 2023 19:03:32 GMT
etag: 0x8DB4A76C1F2FDDC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0afee22f-101e-0052-6900-b07844000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=362010
expires: Sat, 24 Aug 2024 13:39:57 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144787.2c9c29da
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fkuAJkF5UYw2K-9ao9Og6rAO3M0.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/fkuAJkF5UYw2K-9ao9Og6rAO3M0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 28007
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: w704rzx0oe+wokC/aafHAA==
last-modified: Fri, 09 Aug 2024 12:53:59 GMT
etag: 0x8DCB8725655B935
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 503abfcf-601e-0005-038a-ecd677000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=124264
expires: Wed, 21 Aug 2024 19:37:31 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144787.2c9c2b4d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dRQaeVvZZlbz9ayC0wFdbLlVshk.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/dRQaeVvZZlbz9ayC0wFdbLlVshk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: xs3KXZIn4nNix7L0m2A3Wg==
last-modified: Wed, 14 Aug 2024 12:48:23 GMT
etag: 0x8DCBC5F621D5E43
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3eaa352c-901e-004c-5b85-ee949c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 9250
akamai-grn: 0.b4777b5c.1723841278.1915a3
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=184345
expires: Thu, 22 Aug 2024 12:18:52 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144787.2c9c2b64
timing-allow-origin: *
GET

https://r.bing.com/rp/b9Hd7NTqpf3JjC1wwzfTcjY8NP8.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/b9Hd7NTqpf3JjC1wwzfTcjY8NP8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: 9O5vrM5G4fWSfDsnQdQGlA==
last-modified: Thu, 08 Aug 2024 09:11:43 GMT
etag: 0x8DCB78A1F1072EF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 42f7c359-d01e-004d-2142-eecb40000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3359
cache-control: public, no-transform, max-age=313114
expires: Sat, 24 Aug 2024 00:05:01 GMT
date: Tue, 20 Aug 2024 09:06:27 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144787.2c9c2b90
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/U1NbN7mcTwDlpQXJqx6swENhLWc.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/U1NbN7mcTwDlpQXJqx6swENhLWc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 13 Jul 2023 17:38:05 GMT
etag: 0x8DB83C7EA7C7CC5
akamai-grn: 0.ae777b5c.1724131186.14013312
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: Lz38kBt2jGO2Pvu96TRnIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf47292b-701e-00b0-1bf5-c64565000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 420
vary: Accept-Encoding
cache-control: public, no-transform, max-age=12753
expires: Tue, 20 Aug 2024 12:39:02 GMT
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144789.2c9c5886
timing-allow-origin: *
GET

https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 14 May 2024 19:12:40 GMT
etag: 0x8DC7449D307A8BA
akamai-grn: 0.a8777b5c.1723994678.aece329
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: rtxvs37lrHH+iqrm7oyJaw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: acf7d68c-b01e-00bf-7302-a73309000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 481
vary: Accept-Encoding
cache-control: public, no-transform, max-age=124486
expires: Wed, 21 Aug 2024 19:41:15 GMT
date: Tue, 20 Aug 2024 09:06:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144789.2c9c58df
timing-allow-origin: *
GET

https://r.bing.com/rp/rbptDYw-eOlSFDfSlUNCkR6XM0c.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/rbptDYw-eOlSFDfSlUNCkR6XM0c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: 7u1+8l4NEFoyEm3DPNY09Q==
last-modified: Thu, 11 Jul 2024 05:39:04 GMT
etag: 0x8DCA16BC656B952
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ee6f083b-701e-0044-474f-d78e93000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 6366
akamai-grn: 0.45ba1302.1723190773.a778d80
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=214153
expires: Thu, 22 Aug 2024 20:35:47 GMT
date: Tue, 20 Aug 2024 09:06:34 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144794.2c9cad88
timing-allow-origin: *
GET

https://r.bing.com/rp/Ao8XOvaaQxlXxHEA_r06zFgCMTc.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/Ao8XOvaaQxlXxHEA_r06zFgCMTc.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 798
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: hstDU1eMUKGBMjQk8RlX2Q==
last-modified: Mon, 01 May 2023 19:02:58 GMT
etag: 0x8DB4A76AD9FAF11
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8bff4b4a-801e-0040-798b-ef0394000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=65699
expires: Wed, 21 Aug 2024 03:22:16 GMT
date: Tue, 20 Aug 2024 09:07:17 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144837.2c9f8382
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K59yR1AD9pXD4Qp7EsPhFjZsOjo.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/K59yR1AD9pXD4Qp7EsPhFjZsOjo.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1433
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: OcJYFWlVWrIx4HUS08Ub3Q==
last-modified: Mon, 04 Mar 2024 07:16:41 GMT
etag: 0x8DC3C1B0A8D8D3A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6bc192df-401e-0002-614b-d9ba14000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=429243
expires: Sun, 25 Aug 2024 08:21:20 GMT
date: Tue, 20 Aug 2024 09:07:17 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144837.2c9f8383
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jZnZ33DA_uDhotnaIsXNbY1za-s.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/jZnZ33DA_uDhotnaIsXNbY1za-s.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1336
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: cnEzgcTC/bLNbVvHiIQNkA==
last-modified: Mon, 01 May 2023 19:02:55 GMT
etag: 0x8DB4A76AC40BEB5
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 62850981-501e-00a7-6b78-c6ec6e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=83556
expires: Wed, 21 Aug 2024 08:19:53 GMT
date: Tue, 20 Aug 2024 09:07:17 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144837.2c9f8384
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6v5u2U4fJjMh954CqHxOmGfCxRs.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/6v5u2U4fJjMh954CqHxOmGfCxRs.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 257
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: rs/dl8gajygOsUeziFDHzw==
last-modified: Mon, 01 May 2023 19:03:22 GMT
etag: 0x8DB4A76BC0F531E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b81b1d4c-801e-000d-694e-e2cc78000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
akamai-grn: 0.4c1a1202.1723993690.123dc9ac
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=263666
expires: Fri, 23 Aug 2024 10:21:43 GMT
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144837.2c9f8385
timing-allow-origin: *
GET

https://r.bing.com/rp/dvzAZc08QoRQcmA7yoRfhaItvOo.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/dvzAZc08QoRQcmA7yoRfhaItvOo.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 06 Mar 2024 21:52:44 GMT
etag: 0x8DC3E27C1086FC1
akamai-grn: 0.86777b5c.1724011045.bcb7ff1
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8428
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: 6GvcFsmCK8vDOey1GzjNzQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2ef5e7d-a01e-0049-5b89-7307c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cache-control: public, no-transform, max-age=296314
expires: Fri, 23 Aug 2024 19:25:51 GMT
date: Tue, 20 Aug 2024 09:07:17 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144837.2c9f8386
timing-allow-origin: *
GET

https://r.bing.com/rp/DCwEs2WprPyqtoSBavB_W8Qjxl8.gz.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/DCwEs2WprPyqtoSBavB_W8Qjxl8.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 604
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: kxR0G7k0EsGFBc3DCO/fww==
last-modified: Fri, 05 Jul 2024 12:06:40 GMT
etag: 0x8DC9CEAEDCD4506
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4b63a48e-701e-0019-6c1c-f08417000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=127897
expires: Wed, 21 Aug 2024 20:38:54 GMT
date: Tue, 20 Aug 2024 09:07:17 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144837.2c9f8381
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/588mCJcNGAaFB6dOlDRliug5zsc.br.js

msedge.exe

Remote address:

95.101.129.210:443

Request

GET /rp/588mCJcNGAaFB6dOlDRliug5zsc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: fDfcGVjjIYKMJPyzxnMllQ==
last-modified: Wed, 17 Aug 2022 05:13:34 GMT
etag: 0x8DA800F3BF6D863
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2a16bea-401e-00d1-0aad-0982db000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 621
cache-control: public, no-transform, max-age=251221
expires: Fri, 23 Aug 2024 06:56:17 GMT
date: Tue, 20 Aug 2024 09:09:16 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724144956.2ca86557
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
DNS

234.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

234.129.101.95.in-addr.arpa

IN PTR

Response

234.129.101.95.in-addr.arpa

IN PTR

a95-101-129-234deploystaticakamaitechnologiescom
DNS

210.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.129.101.95.in-addr.arpa

IN PTR

Response

210.129.101.95.in-addr.arpa

IN PTR

a95-101-129-210deploystaticakamaitechnologiescom
DNS

login.microsoftonline.com

msedge.exe

Remote address:

8.8.8.8:53

Request

login.microsoftonline.com

IN A

Response

login.microsoftonline.com

IN CNAME

login.mso.msidentity.com

login.mso.msidentity.com

IN CNAME

ak.privatelink.msidentity.com

ak.privatelink.msidentity.com

IN CNAME

www.tm.ak.prd.aadg.akadns.net

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.84

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.147

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.149

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.23

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.146

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.83

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.148

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.177.20
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=f0252e6d-77bb-41ba-ba09-46ac6df44725&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227CF3900D65E54E96AA1C7D6622EE3AB0%22%7d

msedge.exe

Remote address:

20.190.177.84:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=f0252e6d-77bb-41ba-ba09-46ac6df44725&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227CF3900D65E54E96AA1C7D6622EE3AB0%22%7d HTTP/1.1
Host: login.microsoftonline.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://www.bing.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: dc370c8d-61ae-4f5c-91e1-08b79db80f00
x-ms-ests-server: 2.1.18708.3 - FRC ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+frc"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: buid=0.ASYAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABGgEAAAApTwJmzXqdR4BN2miheQMYCPH2Dx25m_PFPalQaBNySDEvcZUi-Iy1ub_DaeDMlBTpzaflGEw-bo8gG89w2J651TBE3Vwfw11SzT7mtv9Fx3THYehaZpSwedDnBaSWwI0gAA; expires=Thu, 19-Sep-2024 09:06:27 GMT; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: fpc=AqJHh27DRrxPhcFLH4pt-eWCeMQLAQAAAJJTVt4OAAAA; expires=Thu, 19-Sep-2024 09:06:27 GMT; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: esctx=PAQABBwEAAAApTwJmzXqdR4BN2miheQMYArioYPUH-7Jbaxsdc-q9o8znGxYlLAmtxK_R542ruRpQn5X2CxZFYZa8YL4KaeR_P8i_PnAtVJ8ex85Uo7PfkXEubJdmV3lvFj14ofox5JmfnrWDDRga7wMnB471zuPOqR5oOUG10aGDRFx-r9jk0ToOU0oXB2M10beeBFzJaPQgAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
Set-Cookie: stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
Date: Tue, 20 Aug 2024 09:06:26 GMT
Content-Length: 674
DNS

84.177.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.177.190.20.in-addr.arpa

IN PTR

Response
DNS

76.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

76.32.126.40.in-addr.arpa

IN PTR

Response
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/Da2dalus/The-MALWARE-Repo

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:32 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"acdc448280fa22884ad8470d97056147"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
set-cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.1798091998.1724144791; Path=/; Domain=github.com; Expires=Wed, 20 Aug 2025 09:06:31 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Wed, 20 Aug 2025 09:06:31 GMT; HttpOnly; Secure; SameSite=Lax
accept-ranges: bytes
x-github-request-id: C792:879F5:13BA01B:1676078:66C45C97
GET

https://github.com/Da2dalus/The-MALWARE-Repo/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"75a11da44c802486bc6f65640aa48a73"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
content-length: 33
x-github-request-id: C792:879F5:13BA14F:16761C3:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C792:879F5:13BA14F:16761C2:66C45C98
GET

https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C792:879F5:13BA14F:16761C5:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: C792:879F5:13BA14F:16761C4:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"8902c7088699d5c25402933819980cd9"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
content-length: 95
x-github-request-id: C792:879F5:13BA15A:16761DC:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"56a3b41b3adb53ca7fce5703eb10dacf"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
content-length: 97
x-github-request-id: C792:879F5:13BA15A:16761DB:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"07da86d5c2d3c431a0aa2221ab777c22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1218
x-github-request-id: C792:879F5:13BA15A:16761DA:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/branch-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/branch-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"adc2c0d060742993a54f31416bc951e3"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 79
x-github-request-id: C792:879F5:13BA158:16761D8:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"020ffed793af5adec2854b0a4211d94f"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 626
x-github-request-id: C792:879F5:13BA15A:16761D9:66C45C99
GET

https://github.com/manifest.json

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /manifest.json HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:28 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=604800, public
etag: W/"c75e05794d72230a695e880f1a6c83a4"
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-type: application/manifest+json; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
content-length: 474
x-github-request-id: C792:879F5:13BA17E:1676201:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo/archive/refs/heads/master.zip

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/archive/refs/heads/master.zip HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:38 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://codeload.github.com/Da2dalus/The-MALWARE-Repo/zip/refs/heads/master
cache-control: max-age=0, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C792:879F5:13BA4B6:167656A:66C45C99
GET

https://github.com/Da2dalus/The-MALWARE-Repo

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"acdc448280fa22884ad8470d97056147"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:32 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"acdc448280fa22884ad8470d97056147"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C792:879F5:13BAA25:1676B5A:66C45C9E
GET

https://github.com/Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"75a11da44c802486bc6f65640aa48a73"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"75a11da44c802486bc6f65640aa48a73"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
x-github-request-id: C792:879F5:13BAAA6:1676BD3:66C45CA6
GET

https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C792:879F5:13BAAA7:1676BD5:66C45CA7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: C792:879F5:13BAAA7:1676BD4:66C45CA7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"020ffed793af5adec2854b0a4211d94f"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"07da86d5c2d3c431a0aa2221ab777c22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C792:879F5:13BAAB7:1676BE6:66C45CA7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"07da86d5c2d3c431a0aa2221ab777c22"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"8902c7088699d5c25402933819980cd9"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
x-github-request-id: C792:879F5:13BAAB7:1676BE8:66C45CA7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/branch-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/branch-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"56a3b41b3adb53ca7fce5703eb10dacf"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"56a3b41b3adb53ca7fce5703eb10dacf"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
x-github-request-id: C792:879F5:13BAAB7:1676BE7:66C45CA7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"8902c7088699d5c25402933819980cd9"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:33 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"020ffed793af5adec2854b0a4211d94f"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C792:879F5:13BAAB7:1676BE5:66C45CA7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree/master/rogues HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:59 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"b0965dd1ad60e1ecbe2726104b33cc26"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
x-github-request-id: C792:879F5:13BB289:1677471:66C45CA7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree/master/rogues HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"b0965dd1ad60e1ecbe2726104b33cc26"

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:06:59 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"11ab1a883ae122de8dc10e31212fcd9f"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: C792:879F5:13BB2B8:16774AB:66C45CB3
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/rogues

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/rogues HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:00 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"bdf6726227a15a183e9d88f212323432"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 334
x-github-request-id: C792:879F5:13BB37D:1677575:66C45CB4
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/rogues

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master/rogues HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:01 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"f2850082cc380a8d0860df18e4a2ea3e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 438
x-github-request-id: C792:879F5:13BB37B:1677574:66C45CB3
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/rogues

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/rogues HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:01 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: C792:879F5:13BB37D:1677576:66C45CB4
DNS

avatars.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

avatars.githubusercontent.com

IN A

Response

avatars.githubusercontent.com

IN A

185.199.109.133

avatars.githubusercontent.com

IN A

185.199.110.133

avatars.githubusercontent.com

IN A

185.199.108.133

avatars.githubusercontent.com

IN A

185.199.111.133
DNS

github.githubassets.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.githubassets.com

IN A

Response

github.githubassets.com

IN A

185.199.110.154

github.githubassets.com

IN A

185.199.109.154

github.githubassets.com

IN A

185.199.108.154

github.githubassets.com

IN A

185.199.111.154
GET

https://github.githubassets.com/assets/light-efd2f2257c96.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/light-efd2f2257c96.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 20 Jun 2024 15:04:39 GMT
etag: 0x8DC913A4EE7222B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1969013
x-served-by: cache-iad-kjyo7100087-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 92, 8647
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e81ffaf02b322ba3491f06af5f14ccd0e4777a64
content-length: 6777
GET

https://github.githubassets.com/assets/dark-6b1e37da2254.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/dark-6b1e37da2254.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 20 Jun 2024 15:04:38 GMT
etag: 0x8DC913A4DF23CAF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2772024
x-served-by: cache-iad-kcgs7200155-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 121, 8689
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b380bef790065c1f38e3b6ccb4fdc88b838e8dba
content-length: 6751
GET

https://github.githubassets.com/assets/primer-primitives-8500c2c7ce5f.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-primitives-8500c2c7ce5f.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 20 Jun 2024 15:04:40 GMT
etag: 0x8DC913A4F6C3759
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1872382
x-served-by: cache-iad-kiad7000133-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 100, 8768
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0033d70e1788d62484cf5227e7aaa32639b6df65
content-length: 1554
GET

https://github.githubassets.com/assets/primer-bbda46ca867f.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-bbda46ca867f.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 01 Aug 2024 23:26:57 GMT
etag: 0x8DCB2816FEAB4CD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1074574
x-served-by: cache-iad-kjyo7100146-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 71, 9823
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 04114122ea1e86758b335fbcefd0dfc40f1370fd
content-length: 38563
GET

https://github.githubassets.com/assets/global-fe6db6dfddd1.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/global-fe6db6dfddd1.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 21 Jun 2024 00:59:32 GMT
etag: 0x8DC918D6979838D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1131205
x-served-by: cache-iad-kiad7000026-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 6921
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5a7a5c032134be76ee8f30a4d95c7e78b687bdcc
content-length: 476
GET

https://github.githubassets.com/assets/github-cf4e90581e80.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/github-cf4e90581e80.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 17 Jun 2024 21:24:12 GMT
etag: 0x8DC8F13D5428FE0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1656445
x-served-by: cache-iad-kcgs7200145-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 22, 4981
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: afd4f41e2c693620b9272225eaba92062902ea4a
content-length: 220
GET

https://github.githubassets.com/assets/code-34406d39e629.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/code-34406d39e629.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 15 Aug 2024 23:18:36 GMT
etag: 0x8DCBD8096EDFA83
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 316068
x-served-by: cache-iad-kiad7000127-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 78, 7568
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7ec8cf23caf3d5202290f36cc3555b16e64691b7
content-length: 38590
GET

https://github.githubassets.com/assets/repository-992e95451f25.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repository-992e95451f25.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 05 Aug 2024 16:06:17 GMT
etag: 0x8DCB56889BF04A0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1267939
x-served-by: cache-iad-kcgs7200041-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 4, 5831
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5b676d5b61a3d23c9df3df902f0e4092df9ff2a9
content-length: 5605
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu.572fff1cb5c3caef1ac9.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-subscriptions-menu.572fff1cb5c3caef1ac9.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 02 Aug 2024 19:20:41 GMT
etag: 0x8DCB32832D35CCA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 590000
x-served-by: cache-iad-kcgs7200168-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 18, 7202
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fa8ad1261d8928e498ec4c577bf65a04eb0f3680
content-length: 5040
GET

https://github.githubassets.com/assets/repos-overview.47cf64b9ae0677ccb350.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repos-overview.47cf64b9ae0677ccb350.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 08 Aug 2024 21:36:12 GMT
etag: 0x8DCB7F21FCA1034
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 666149
x-served-by: cache-iad-kiad7000142-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 9781
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 742e52eb9a3ad8935b22e02b3535a84ada25c272
content-length: 21610
GET

https://github.githubassets.com/assets/wp-runtime-874c449f8305.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/wp-runtime-874c449f8305.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 19 Aug 2024 20:29:18 GMT
etag: 0x8DCC08D99D76690
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 27472
x-served-by: cache-iad-kcgs7200045-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 133, 330
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dfc1d6aac00a9870d9d669c1ba4bad0496979e7a
content-length: 14083
GET

https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-89a69c248502.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_dompurify_dist_purify_js-89a69c248502.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9F23A95
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1910430
x-served-by: cache-iad-kjyo7100027-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8938
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9d72645ef34a19beda6732779d620fcb1f3c784e
content-length: 7912
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-56729c905fe2.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-56729c905fe2.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA2435F4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2285255
x-served-by: cache-iad-kjyo7100033-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 8837
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 70488fcda0ab9d9c4d72a5e215c1c8b3a94ced56
content-length: 3070
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_smoothscroll-polyfill_di-75db2e-686488490524.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_smoothscroll-polyfill_di-75db2e-686488490524.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 18:51:29 GMT
etag: 0x8DCB648C82ABBBA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1156066
x-served-by: cache-iad-kjyo7100030-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 76, 9136
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2f97d0bcb54764e061db9b7bc9ecf3167a0a8aa7
content-length: 5015
GET

https://github.githubassets.com/assets/environment-cd098098ff2e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/environment-cd098098ff2e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:36 GMT
etag: 0x8DCB587514BBE51
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kjyo7100173-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9143
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: be722ce6cf92488aa5fd818be289ebcb6c36d13d
content-length: 5255
GET

https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 31 Jul 2024 16:17:44 GMT
etag: 0x8DCB17C4F94A6D1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1696230
x-served-by: cache-iad-kcgs7200173-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 52, 8987
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 65e5399b49c9ee3e9d59012780b9e49014d21e5c
content-length: 4754
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_focus-zone_js-c9086a4fb62b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_focus-zone_js-c9086a4fb62b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA2435F4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2285255
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8791
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7415e51268bf9cb21861ebd8841741beca61180d
content-length: 3284
GET

https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f9b958f5f2df.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_relative-time-element_dist_index_js-f9b958f5f2df.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 26 Jul 2024 02:43:54 GMT
etag: 0x8DCAD1CCA15C92E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1287066
x-served-by: cache-iad-kiad7000050-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 84, 8885
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9247197285aaad0ab5412256b63fe0530fe39494
content-length: 3320
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_fzy_js_index-05960a-797b1227c4b8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_fzy_js_index-05960a-797b1227c4b8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 12 Aug 2024 20:42:25 GMT
etag: 0x8DCBB0F4621C4B2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409421
x-served-by: cache-iad-kcgs7200023-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 10017
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 559a610f83473566d96569d8261d93ae532ddf42
content-length: 6574
GET

https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_details-d-ed9a97-841122a1e9d4.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_details-d-ed9a97-841122a1e9d4.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9F1513E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1225121
x-served-by: cache-iad-kcgs7200102-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8919
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 68be5bf8f7189bbb48d5e0e41b23a4aec259b3ff
content-length: 4939
GET

https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-cd48220d74d5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_text-expander-element_dist_index_js-cd48220d74d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA245CD8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1631966
x-served-by: cache-iad-kiad7000129-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 8904
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0d7289baa46a10881fc60ab9cdb8152c944d2082
content-length: 4301
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_delegated-events_dist_in-3efda3-701acb69193f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_delegated-events_dist_in-3efda3-701acb69193f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 07 Aug 2024 07:38:23 GMT
etag: 0x8DCB6B3EAF9522C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1125093
x-served-by: cache-iad-kiad7000069-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 8, 9247
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 48ca29b2a3bc6fd450fd351f85699f3ca359d181
content-length: 7283
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-2e8678-34feeec9c894.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-2e8678-34feeec9c894.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 12 Aug 2024 20:42:24 GMT
etag: 0x8DCBB0F4594EFF2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409421
x-served-by: cache-iad-kcgs7200083-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 10047
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3dc18a6b8e24bb080301496802f5041e6ab6644f
content-length: 4932
GET

https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_clipboard-copy-element_-782ca5-54763cd55b96.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_clipboard-copy-element_-782ca5-54763cd55b96.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9EF7E8A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2285255
x-served-by: cache-iad-kiad7000146-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8843
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 425ee0768242e2ebd7639fd6fbf95baef49b9ba7
content-length: 3000
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-3959a9-5779869d7165.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-3959a9-5779869d7165.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 07 Aug 2024 17:14:38 GMT
etag: 0x8DCB7046B3F5B20
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1074573
x-served-by: cache-iad-kiad7000038-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 70, 9508
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7547b77d17d4c927db414a488cc71683d8c89381
content-length: 21433
GET

https://github.githubassets.com/assets/app_assets_modules_github_onfocus_ts-ui_packages_trusted-types-policies_policy_ts-ui_packages-6fe316-9d50d6f10c3d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_onfocus_ts-ui_packages_trusted-types-policies_policy_ts-ui_packages-6fe316-9d50d6f10c3d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F4CB0D8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kcgs7200163-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9166
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5accd5ffe2c759dd68db20c557b63aee9d70a2e4
content-length: 3595
GET

https://github.githubassets.com/assets/github-elements-074e91131d8f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/github-elements-074e91131d8f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 12 Aug 2024 20:42:18 GMT
etag: 0x8DCBB0F41FBAFC1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409420
x-served-by: cache-iad-kiad7000111-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 10117
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: aff03e4836eb8b09fc23bde49f842dd0c0031266
content-length: 11062
GET

https://github.githubassets.com/assets/element-registry-207a3f1b3875.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/element-registry-207a3f1b3875.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 16 Aug 2024 14:06:40 GMT
etag: 0x8DCBDFCA66F0668
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 309187
x-served-by: cache-iad-kiad7000101-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 11, 2165
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ecf8df2804bca2da19b176711aad645a043a6dda
content-length: 7899
GET

https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-7901e7-dc88587c14ed.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-7901e7-dc88587c14ed.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 18:51:29 GMT
etag: 0x8DCB648C80E530C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1156066
x-served-by: cache-iad-kjyo7100038-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 76, 9222
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c958877b79918408ef3e5ab07373042c328bd2ad
content-length: 5415
GET

https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_stack-68835d-a18220f1db8d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_stack-68835d-a18220f1db8d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9B32E84
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2257760
x-served-by: cache-iad-kjyo7100048-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 9015
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 942e093aea45751d7b45ea099d2f65c3682b2ff6
content-length: 6921
GET

https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA245CD8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1885281
x-served-by: cache-iad-kiad7000173-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 8893
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c0735371d2654593a096c9b5aa4fe30cf403184c
content-length: 3911
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA1D5FD6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 613114
x-served-by: cache-iad-kjyo7100087-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8866
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ae7c60d0c318a3ffef9f5b3813f2b9fb9a8a3e54
content-length: 2385
GET

https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA1E2257
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1731110
x-served-by: cache-iad-kcgs7200153-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8871
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 711fa49d63da141a224a46912f5f9d8c2e509a05
content-length: 3816
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA2E15EB
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1789210
x-served-by: cache-iad-kjyo7100041-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 9191
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ee11eedd9b88f158d5c70331cb23e67598cb4047
content-length: 18641
GET

https://github.githubassets.com/assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_github_hotkey-1a1d91-fa9f29a8514b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_github_hotkey-1a1d91-fa9f29a8514b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:54 GMT
etag: 0x8DCAB55CAE50665
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1887691
x-served-by: cache-iad-kcgs7200053-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8916
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f526ef22f7cf106253637851b97b9c32ca8b52eb
content-length: 4582
GET

https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9E02677
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1871248
x-served-by: cache-iad-kjyo7100169-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8884
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3dd1db39f2027fdc35063a06162afe147b787db4
content-length: 4852
GET

https://github.githubassets.com/assets/vendors-node_modules_github_session-resume_dist_index_js-node_modules_primer_behaviors_dist_e-ac74c6-5e03381c44b5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_session-resume_dist_index_js-node_modules_primer_behaviors_dist_e-ac74c6-5e03381c44b5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 12 Aug 2024 20:42:25 GMT
etag: 0x8DCBB0F4602044F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409421
x-served-by: cache-iad-kcgs7200141-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 10078
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e7a27702a228f49ee6d3dd10bf6b4bca883ec33b
content-length: 3567
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-53b423ede32a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-53b423ede32a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA265673
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 605755
x-served-by: cache-iad-kcgs7200156-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 9030
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ff2f03ba033f36d8ae48ff4ac0369b7b81807a91
content-length: 9804
GET

https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_textarea-autosi-9e0349-ab4976fc78a6.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_textarea-autosi-9e0349-ab4976fc78a6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA6B9D0E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1207733
x-served-by: cache-iad-kcgs7200046-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 8876
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6b2bfbd6ec9bfd6be83c227ac5fd00b9e7845166
content-length: 3001
GET

https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-e15463ecf7e6.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_updatable-content_updatable-content_ts-e15463ecf7e6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:42 GMT
etag: 0x8DCB58754D2266A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kjyo7100077-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9273
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e909c4c71c254481649b2ba8c137bccec00cb240
content-length: 7745
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_onfocus_ts-app_ass-421cec-f0e1d31bff9a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_onfocus_ts-app_ass-421cec-f0e1d31bff9a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F49A6FE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174946
x-served-by: cache-iad-kcgs7200149-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9152
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e7cbb159d1d59103e09211b0060a0e7d1fcbc29e
content-length: 5032
GET

https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-112600808cf9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_sticky-scroll-into-view_ts-112600808cf9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F6AEC62
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kjyo7100078-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9113
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 27ee4b790f42bd3b8f860586e7f35131273bc105
content-length: 3364
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-467754-8b1a4442f9b3.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-467754-8b1a4442f9b3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F4A4292
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kcgs7200022-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9113
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5b53f466c2d6effdcbb3b2c9181f42d87a267b9a
content-length: 3079
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-4accd4baf37d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-4accd4baf37d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F49A6FE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kcgs7200065-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9193
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2455c87069f209f456f332106329d513a1d80f09
content-length: 2401
GET

https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-app_assets_modules_github_filter-sort_ts-app_assets_-6deafe-fc95155e233a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_blob-anchor_ts-app_assets_modules_github_filter-sort_ts-app_assets_-6deafe-fc95155e233a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F4CFEA0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kjyo7100054-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9209
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7082e12e8db6ee305e4a20da81d07de0d214c87f
content-length: 5693
GET

https://github.githubassets.com/assets/behaviors-3b4c83250375.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/behaviors-3b4c83250375.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9E07445
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1872381
x-served-by: cache-iad-kiad7000133-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 1653, 8914
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ba42e5ac596cb7c79abfa9d8773c6eb35cb934e9
content-length: 4125
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 16 Aug 2024 14:10:22 GMT
etag: 0x8DCBDFD2ACDA645
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 316068
x-served-by: cache-iad-kcgs7200163-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 78, 7826
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dbf1056c9d2cd2418a5db4e4a52ee3d0614a1612
content-length: 58567
GET

https://github.githubassets.com/assets/notifications-global-3ddac678adaf.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-global-3ddac678adaf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:54 GMT
etag: 0x8DCAB55CAE8ABD4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2150068
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 6904
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bfa3146b0a75bd328732f2c27f4e8599cebf2ccb
content-length: 3888
GET

https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:39 GMT
etag: 0x8DCB58752FDC79F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kiad7000035-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9130
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 06c06df55107287db829c49bc9d76cc51adeb83b
content-length: 3088
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-62113d33abd1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-62113d33abd1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 18:51:29 GMT
etag: 0x8DCB648C82F9865
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1156060
x-served-by: cache-iad-kcgs7200168-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 56, 5565
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 57076443fb9601bc2481a6f13b49fc0708cd897c
content-length: 8056
GET

https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-00df584d9e79.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_ref-selector_ts-00df584d9e79.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F4AB741
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 581016
x-served-by: cache-iad-kcgs7200159-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 84, 6369
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 362fd0f4c0db25dea207a6f3f44eddd4650365b8
content-length: 3272
GET

https://github.githubassets.com/assets/codespaces-1f3309c400b4.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/codespaces-1f3309c400b4.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 18:51:29 GMT
etag: 0x8DCB648C812E1CB
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1156046
x-served-by: cache-iad-kcgs7200062-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 50, 6015
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c85f6e405c4af0fe340b6e7fdf379a918677e095
content-length: 17549
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_filter--0879fe-bcfcfd976be7.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_filter--0879fe-bcfcfd976be7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F4B0508
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kjyo7100032-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 7115
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b700788db78917d234bc7743f61edfd454e6afc5
content-length: 3258
GET

https://github.githubassets.com/assets/app_assets_modules_github_repositories_get-repo-element_ts-4fc152f40452.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_repositories_get-repo-element_ts-4fc152f40452.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 23:17:40 GMT
etag: 0x8DCB66DF7994741
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1000716
x-served-by: cache-iad-kiad7000033-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 68, 5664
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2a894e7e4ecb7c4b93058fa762b534abba1818fd
content-length: 10211
GET

https://github.githubassets.com/assets/repositories-22e89d7b03b0.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repositories-22e89d7b03b0.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA1E2257
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2250524
x-served-by: cache-iad-kiad7000080-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 40, 5690
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5dd38834b19e32d2288eaf8b245e54861721b02a
content-length: 2607
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-e73b311a14f1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-e73b311a14f1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:41 GMT
etag: 0x8DCB58753C2D204
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174946
x-served-by: cache-iad-kiad7000101-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 139, 6068
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 159043fbe02db06a2c39b2fed0e2f4a2df64ceb1
content-length: 20072
GET

https://github.githubassets.com/assets/code-menu-a8d08997ac4f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/code-menu-a8d08997ac4f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:35 GMT
etag: 0x8DCB5875099B15B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kcgs7200030-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 85, 6604
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b1d2d4a0fbea8f42a6119224bbb835ea0dde48d1
content-length: 238
GET

https://github.githubassets.com/assets/react-lib-7b7b5264f6c1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-lib-7b7b5264f6c1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 02 Aug 2024 22:13:06 GMT
etag: 0x8DCB34048D4C780
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1092152
x-served-by: cache-iad-kcgs7200055-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 22, 8482
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0678cad894ea90e9d78dbbd5f810024dece2340b
content-length: 140777
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_primer_octicons-react_di-b40d97-06881c63f955.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_primer_octicons-react_di-b40d97-06881c63f955.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:50 GMT
etag: 0x8DCAB55C856ACEA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1701570
x-served-by: cache-iad-kjyo7100029-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 10027
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5231fc1f024aa93c835631d356d7cb0d43e7001a
content-length: 54857
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Box_Box_js-55a9038b54f0.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_Box_Box_js-55a9038b54f0.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 13 Aug 2024 15:42:40 GMT
etag: 0x8DCBBAE9084D01F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 399213
x-served-by: cache-iad-kcgs7200121-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 27, 10204
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dea01c81d4372b800c7e9da872e89a0dd4ba1d73
content-length: 8542
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Button_Button_js-b0edbfb6a9e5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_Button_Button_js-b0edbfb6a9e5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9B32E84
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1183401
x-served-by: cache-iad-kiad7000030-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 9538
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 234a2476c3fc547df0a549f6afad2c21839336a9
content-length: 7009
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_TooltipV2_Tooltip_js-4d5019830e3c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_TooltipV2_Tooltip_js-4d5019830e3c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 30 Jul 2024 14:28:35 GMT
etag: 0x8DCB0A3E5A62F1C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1092152
x-served-by: cache-iad-kiad7000160-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 22, 9889
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e279f5e94de692e10b6f119c486ce9dd1ebf17ab
content-length: 4950
GET

https://github.githubassets.com/assets/vendors-node_modules_clsx_dist_clsx_m_js-node_modules_primer_react_node_modules_primer_octico-c56103-e91295e60abd.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_clsx_dist_clsx_m_js-node_modules_primer_react_node_modules_primer_octico-c56103-e91295e60abd.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 20:29:19 GMT
etag: 0x8DCB65673021528
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1092152
x-served-by: cache-iad-kcgs7200073-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 9842
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 47f6cd4063e74f81ed4cbf3e9bec70a946c9ed81
content-length: 4499
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_ActionList_index_js-f646728c385c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_ActionList_index_js-f646728c385c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 14 Aug 2024 02:25:23 GMT
etag: 0x8DCBC085A33A46C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 312646
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 53, 6085
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 24a01607ab15dc86f7c6428d80c09b2745fdf87b
content-length: 6236
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_ActionMenu_ActionMenu_js-node_modules_primer_react_-5b2420-048f91dcedb3.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_ActionMenu_ActionMenu_js-node_modules_primer_react_-5b2420-048f91dcedb3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 13 Aug 2024 15:42:41 GMT
etag: 0x8DCBBAE90FF6972
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 399213
x-served-by: cache-iad-kcgs7200165-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 27, 9512
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: aae8d0a509a633fad117a5e3763b3a301d32fc81
content-length: 12888
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Text_Text_js-node_modules_primer_react_lib-esm_Text-7845da-adcc76ee8848.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_Text_Text_js-node_modules_primer_react_lib-esm_Text-7845da-adcc76ee8848.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 16 Aug 2024 14:05:20 GMT
etag: 0x8DCBDFC76D3579A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 326560
x-served-by: cache-iad-kjyo7100062-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 9, 7947
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: beb39c9f7fa8d68a432291a8aa545659aef9e370
content-length: 10082
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_FormControl_FormControl_js-1f51ab2bdcca.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_FormControl_FormControl_js-1f51ab2bdcca.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 13 Aug 2024 15:42:41 GMT
etag: 0x8DCBBAE91253D6E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 399213
x-served-by: cache-iad-kcgs7200082-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 25, 7916
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 383a94ad5f1b47604b51bd0aa38674a31adc1cc5
content-length: 4414
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_FilteredActionList_FilteredActionList_js-5a52bf212e2b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_FilteredActionList_FilteredActionList_js-5a52bf212e2b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 26 Jul 2024 02:43:54 GMT
etag: 0x8DCAD1CCA172CCD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1760974
x-served-by: cache-iad-kiad7000058-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 78, 7638
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d58fa12d3b8470071d5004933c2be55d525e55b7
content-length: 3763
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Dialog_js-node_modules_primer_react_lib-esm_Feature-cdf735-892e8f58058f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_Dialog_js-node_modules_primer_react_lib-esm_Feature-cdf735-892e8f58058f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:54 GMT
etag: 0x8DCAB55CAB9BA4E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1882485
x-served-by: cache-iad-kjyo7100061-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 9492
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d1007b87004e4caf081871f0b6e7b072b8f302ec
content-length: 4777
GET

https://github.githubassets.com/assets/ui_packages_react-core_create-browser-history_ts-ui_packages_safe-storage_safe-storage_ts-ui_-682c2c-7a1e99981675.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_react-core_create-browser-history_ts-ui_packages_safe-storage_safe-storage_ts-ui_-682c2c-7a1e99981675.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 15 Aug 2024 23:53:05 GMT
etag: 0x8DCBD85683E18EE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 312646
x-served-by: cache-iad-kjyo7100142-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 53, 6150
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e0425edf5018b0a4eead6165fe7896ec9a0f3c66
content-length: 9644
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu-be1efa498152.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-subscriptions-menu-be1efa498152.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 14 Aug 2024 02:25:29 GMT
etag: 0x8DCBC085D52BD97
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 312647
x-served-by: cache-iad-kjyo7100166-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 70, 6149
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f14d07e17fd86374c0572b5949575d964e976fbc
content-length: 4472
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Dialog_Dialog_js-node_modules_primer_react_lib-esm_-bd7638-683c833a31df.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_Dialog_Dialog_js-node_modules_primer_react_lib-esm_-bd7638-683c833a31df.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:42 GMT
etag: 0x8DCB58754CF6A56
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174947
x-served-by: cache-iad-kcgs7200158-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 9769
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 091f2064a8c1b1c4b2284e866d7b58bb3971ac15
content-length: 4229
GET

https://github.githubassets.com/assets/keyboard-shortcuts-dialog-15a4cf222dbb.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/keyboard-shortcuts-dialog-15a4cf222dbb.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:41 GMT
etag: 0x8DCB5875408B427
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1174825
x-served-by: cache-iad-kjyo7100128-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 22, 7822
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: cd14de9beb0e72cadb6459e54878ad44956a1481
content-length: 4078
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:54 GMT
etag: 0x8DCAB55CAE5A1FC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 2285253
x-served-by: cache-iad-kiad7000156-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 5675
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5b81897ecab13ca880cd9ed61b8a34dc8b7728fa
content-length: 3475
GET

https://github.githubassets.com/assets/sessions-b81e688feb0f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/sessions-b81e688feb0f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 26 Jul 2024 02:43:54 GMT
etag: 0x8DCAD1CCA6E6090
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1760967
x-served-by: cache-iad-kjyo7100115-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 57, 5167
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9f67f10a4d37a8c9a4794d9e0458614dad69e945
content-length: 3907
GET

https://github.githubassets.com/assets/vendors-node_modules_react-router-dom_dist_index_js-c5568c29d405.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_react-router-dom_dist_index_js-c5568c29d405.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 16:47:13 GMT
etag: 0x8DCB7C9C13EEA03
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 399213
x-served-by: cache-iad-kcgs7200175-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 25, 7899
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 221ae9e38dcabacad636f58262677356df632d23
content-length: 10693
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_UnderlineNav_index_js-a48891f88da5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_UnderlineNav_index_js-a48891f88da5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 12 Aug 2024 20:42:25 GMT
etag: 0x8DCBB0F46240C17
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409417
x-served-by: cache-iad-kcgs7200075-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 6536
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4a8edfcb0d576c2a97de9cbbed73f8fd4be24117
content-length: 6758
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_primer_react-4d507b-85f1dac4ce7d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_primer_react-4d507b-85f1dac4ce7d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 15 Aug 2024 23:53:05 GMT
etag: 0x8DCBD8568181DFD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 312647
x-served-by: cache-iad-kiad7000114-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 4935
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 84fea088e0c472a7b614cdf25aba1788d9c4e4fd
content-length: 5607
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_AvatarStack_AvatarStack_js-node_modules_primer_reac-cd52f5-34ef2ba7726b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_AvatarStack_AvatarStack_js-node_modules_primer_reac-cd52f5-34ef2ba7726b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 15 Aug 2024 23:53:05 GMT
etag: 0x8DCBD8568401280
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 312646
x-served-by: cache-iad-kjyo7100140-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 84, 4445
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 219005e990781657408aac5bc391b104aa2e5220
content-length: 12839
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Dialog_Dialog_js-node_modules_primer_react_lib-esm_-3275d6-74049e4bc2bd.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_Dialog_Dialog_js-node_modules_primer_react_lib-esm_-3275d6-74049e4bc2bd.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA240F10
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 1276855
x-served-by: cache-iad-kcgs7200022-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 4, 7659
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dbe7cab0b55fa9ab6a14227cdc2923cef30f89d6
content-length: 5219
GET

https://github.githubassets.com/assets/ui_packages_paths_index_ts-9eb3412d85a7.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_paths_index_ts-9eb3412d85a7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 13 Aug 2024 11:07:25 GMT
etag: 0x8DCBB881CFBD575
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 582698
x-served-by: cache-iad-kiad7000055-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 2, 9325
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3d1b2805dd5dd233f2ff24d78b9b77dd9a61263c
content-length: 4871
GET

https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-7b0796d1324c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_ref-selector_RefSelector_tsx-7b0796d1324c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 07 Aug 2024 18:49:09 GMT
etag: 0x8DCB7119F758818
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409417
x-served-by: cache-iad-kcgs7200142-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 6504
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 32f94e49b92a8a6608d4f599492e30b3e2cb7663
content-length: 6196
GET

https://github.githubassets.com/assets/ui_packages_copy-to-clipboard_index_ts-ui_packages_react-core_use-feature-flag_ts-ui_packages-9fa6b6-6e8c63eb2d15.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_copy-to-clipboard_index_ts-ui_packages_react-core_use-feature-flag_ts-ui_packages-9fa6b6-6e8c63eb2d15.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 15 Aug 2024 14:54:44 GMT
etag: 0x8DCBD3A336702FB
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409417
x-served-by: cache-iad-kiad7000164-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 6575
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3b13052dea43735b17e43ad436e4ae3d0426ed0d
content-length: 16889
GET

https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-9a3d65-c2af6875bd6f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-9a3d65-c2af6875bd6f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 14 Aug 2024 14:32:26 GMT
etag: 0x8DCBC6DEB51D543
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 409417
x-served-by: cache-iad-kjyo7100036-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 6525
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 146e531264d3a2c38fcc9a3a11da32e440c8faa1
content-length: 4850
GET

https://github.githubassets.com/assets/repos-overview-84420f9ffa55.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repos-overview-84420f9ffa55.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 15 Aug 2024 23:53:02 GMT
etag: 0x8DCBD85661BA39C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
age: 312646
x-served-by: cache-iad-kiad7000080-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 83, 4484
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a5a58b2e1150d6a4da27c99ba575b8fc18499b01
content-length: 25381
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_github_memoi-4b0bd5-b63d4c76d546.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_github_memoi-4b0bd5-b63d4c76d546.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:44 GMT
etag: 0x8DCAB55C4C09E55
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 2285254
x-served-by: cache-iad-kcgs7200172-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 3757, 8302
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a62f9128c7730246f8c1aa8e9c0f38ddab99e78d
content-length: 3734
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-72e65e1a9e50.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_primer_experimental_select-panel-element_ts-72e65e1a9e50.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 18:04:05 GMT
etag: 0x8DCB64229585E43
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 1174947
x-served-by: cache-iad-kcgs7200042-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 8650
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f79afd5173b61d8e04212ee95b1319ec5f344a4e
content-length: 5556
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:34 GMT
etag: 0x8DCB58750224B38
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 1174947
x-served-by: cache-iad-kjyo7100141-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 8439
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 208e695dcffcee3ed0711a420a6f495090632d98
content-length: 543
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-04fb8f0-1620a267eab5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-04fb8f0-1620a267eab5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 18:51:24 GMT
etag: 0x8DCB648C553CC3E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 1136133
x-served-by: cache-iad-kcgs7200066-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 72, 8083
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6397d351daa9f469e2ef3af6eba5ede2a1cb6ef1
content-length: 5941
GET

https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-3a568db843b2.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_search_custom-scopes-element_ts-3a568db843b2.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:35 GMT
etag: 0x8DCB587503F7682
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 588656
x-served-by: cache-iad-kjyo7100172-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 8138
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2ef38dc3fc259fd52fc0ba36c0d3e0f9ab5ec99e
content-length: 6620
GET

https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-ui_packages_safe-storage_safe-storage_ts-90c65e701241.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_query-builder-element_query-builder-element_ts-ui_packages_safe-storage_safe-storage_ts-90c65e701241.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 16:49:48 GMT
etag: 0x8DCB7CA1D5BA687
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 1004191
x-served-by: cache-iad-kjyo7100130-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 102, 8285
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4726445aa81dc7bf3367cc236e717209ae9c46f4
content-length: 9292
GET

https://github.githubassets.com/assets/chunk-app_assets_modules_github_jump-to_ts-0decd35df3b4.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_assets_modules_github_jump-to_ts-0decd35df3b4.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 07 Aug 2024 11:58:07 GMT
etag: 0x8DCB6D833BE9C72
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 941989
x-served-by: cache-iad-kiad7000101-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 15, 8512
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fcb5e84083976783a23f814490f85eb57b5e8350
content-length: 23705
GET

https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_form-utils_form-utils_ts-ui_packa-cd5fe9-2993ae65b9a8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_form-utils_form-utils_ts-ui_packa-cd5fe9-2993ae65b9a8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 16 Aug 2024 21:23:17 GMT
etag: 0x8DCBE39A582B326
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 299096
x-served-by: cache-iad-kjyo7100173-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 8, 6354
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ac95555b39d64a5048e649e54189f2df06d9de51
content-length: 5102
GET

https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-a30501e51b3a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-a30501e51b3a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:35 GMT
etag: 0x8DCB587506DC9BB
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 1174947
x-served-by: cache-iad-kjyo7100167-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 8508
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5416e39af8d505295c2b9b81e28621157e733f50
content-length: 3184
GET

https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-b8a0d9bc2ed9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-b8a0d9bc2ed9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:35 GMT
etag: 0x8DCB587506CB977
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 588656
x-served-by: cache-iad-kiad7000124-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 8479
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6204880a6346c660d2b874e0ef367dc206f23742
content-length: 2950
GET

https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-ui_packages_trusted-types-policies_policy_ts--77a9d9-5febadf19308.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-node_modules_github_mini-throttle_dist_index_js-ui_packages_trusted-types-policies_policy_ts--77a9d9-5febadf19308.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 21:39:04 GMT
etag: 0x8DCB66031D4ABE1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 1156067
x-served-by: cache-iad-kcgs7200071-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 74, 8174
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d0ca6935f610fb53ea81894c49c312cff3c7095c
content-length: 9899
GET

https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:35 GMT
etag: 0x8DCB5875084BA53
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 447506
x-served-by: cache-iad-kcgs7200147-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 8522
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 667b92874935640fdbd7ac0c560964401ed927f6
content-length: 2790
GET

https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-24bd498e34f6.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-24bd498e34f6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 19 Aug 2024 16:19:26 GMT
etag: 0x8DCC06AB22D0454
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 42935
x-served-by: cache-iad-kjyo7100128-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 41, 429
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d9ed770dfadb6082799e0e7088beaadae056022a
content-length: 5240
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:43 GMT
etag: 0x8DCAB55C4A09029
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 2166474
x-served-by: cache-iad-kcgs7200110-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 8185
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f3345b8117c4b92361bfbacf7c60e9a5e74ff200
content-length: 9412
GET

https://github.githubassets.com/assets/react-code-view.234ae39ff1fa1232236c.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-code-view.234ae39ff1fa1232236c.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 19 Aug 2024 16:19:33 GMT
etag: 0x8DCC06AB5E4576D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 42951
x-served-by: cache-iad-kiad7000139-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 31, 232
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 68246951065e3e013a2fe64f58cd0608ccc9e6ac
content-length: 13925
GET

https://github.githubassets.com/assets/wp-runtime-e9fc2a6de642.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/wp-runtime-e9fc2a6de642.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 19 Aug 2024 16:01:42 GMT
etag: 0x8DCC06837FE62D3
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 53150
x-served-by: cache-iad-kcgs7200140-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 418
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d15e0945b7f487fbd0d84b1294a25144dbace0ad
content-length: 68633
GET

https://github.githubassets.com/assets/element-registry-f7a66f1ddeb6.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/element-registry-f7a66f1ddeb6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 09 Aug 2024 19:40:19 GMT
etag: 0x8DCB8AB19CDED40
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 409435
x-served-by: cache-iad-kiad7000083-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 7, 2902
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 37af755a5e392a8924432f9abcb8de0346f77b0c
content-length: 7445
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_ConfirmationDialog_ConfirmationDialog_js-099e8bfead83.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_ConfirmationDialog_ConfirmationDialog_js-099e8bfead83.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 06 Aug 2024 16:51:51 GMT
etag: 0x8DCB63811FB8BAC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 1174975
x-served-by: cache-iad-kcgs7200069-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 12, 2899
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e37a0ba3e27258b4cb35f0ae93f5da7e87b36d3b
content-length: 7462
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Heading_Heading_js-node_modules_primer_react_lib-es-96435f-69dda7b301fe.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_Heading_Heading_js-node_modules_primer_react_lib-es-96435f-69dda7b301fe.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 24 Jun 2024 14:52:43 GMT
etag: 0x8DC945D4D8528F9
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 1205655
x-served-by: cache-iad-kcgs7200050-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 2422
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 82bf33b57788aa4425a578aa4a449ac225ff51e7
content-length: 583
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_TreeView_TreeView_js-163f241772cf.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_react_lib-esm_TreeView_TreeView_js-163f241772cf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 16 Aug 2024 18:09:29 GMT
etag: 0x8DCBE1E9253F0A0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 284988
x-served-by: cache-iad-kiad7000048-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 86, 363
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dc2084eba47fd74549e2196613fdffa541af0ae2
content-length: 7899
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_scroll-into-view_js-node_modules_primer_react_-3602e6-08dffc43caa6.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_scroll-into-view_js-node_modules_primer_react_-3602e6-08dffc43caa6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 26 Jul 2024 02:43:54 GMT
etag: 0x8DCAD1CCA43FDD0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 1761001
x-served-by: cache-iad-kjyo7100091-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 48, 2620
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3f21d73dab53bfa74aaed98ae4c88ac289331525
content-length: 4904
GET

https://github.githubassets.com/assets/ui_packages_react-core_register-app_ts-d92f692cd90a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_react-core_register-app_ts-d92f692cd90a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 15 Aug 2024 23:53:05 GMT
etag: 0x8DCBD8567DB595B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 312668
x-served-by: cache-iad-kjyo7100070-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 32, 2144
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0d6847edfea0e09fb04cfdbb07dc875a70ea0aaf
content-length: 8108
GET

https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-f45efb-a5bb4a693481.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-f45efb-a5bb4a693481.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 20 Aug 2024 07:18:33 GMT
etag: 0x8DCC0E84CF40F48
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 5114
x-served-by: cache-iad-kcgs7200163-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 7, 418
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: edb9131870f64331a865671b46f8ac1fd787a36f
content-length: 14087
GET

https://github.githubassets.com/assets/ui_packages_repos-file-tree-view_repos-file-tree-view_ts-ui_packages_feature-request_FeatureR-ec5225-ec38d5ad4ab9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_repos-file-tree-view_repos-file-tree-view_ts-ui_packages_feature-request_FeatureR-ec5225-ec38d5ad4ab9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 16:47:13 GMT
etag: 0x8DCB7C9C13E2790
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 399241
x-served-by: cache-iad-kcgs7200050-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 3008
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 23bd766d26d87081d068f730d577d6d254268938
content-length: 6286
GET

https://github.githubassets.com/assets/react-code-view-bea370344f2f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-code-view-bea370344f2f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 31 Jul 2024 19:26:39 GMT
etag: 0x8DCB196B3463A39
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:07:00 GMT
age: 399241
x-served-by: cache-iad-kjyo7100081-IAD, cache-lcy-eglc8600083-LCY
x-cache: HIT, HIT
x-cache-hits: 50, 2766
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 37ea6d88322c62bb7e13fd7d193e8b7c043ed5c9
content-length: 6466
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

16.182.41.169

s3-w.us-east-1.amazonaws.com

IN A

54.231.193.145

s3-w.us-east-1.amazonaws.com

IN A

52.216.37.113

s3-w.us-east-1.amazonaws.com

IN A

16.182.106.185

s3-w.us-east-1.amazonaws.com

IN A

54.231.204.105

s3-w.us-east-1.amazonaws.com

IN A

52.217.120.201

s3-w.us-east-1.amazonaws.com

IN A

52.216.107.228

s3-w.us-east-1.amazonaws.com

IN A

3.5.21.122
GET

https://avatars.githubusercontent.com/u/63458929?s=64&v=4

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/63458929?s=64&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "e25efc2f3c542a995df70f85198b7fd6184be4700ec9756e00c0a8fd9e7a124c"
last-modified: Sun, 17 Aug 2014 16:53:21 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 501A:11AEC2:1B7058:21AFF0:66BD8482
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600075-LCY
x-cache: HIT
x-cache-hits: 161
x-timer: S1724144793.523710,VS0,VE0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: f37662124cb8d6c7cb6d5404e2b9144f27a94fbc
expires: Tue, 20 Aug 2024 09:11:32 GMT
source-age: 448534
vary: Authorization,Accept-Encoding
content-length: 1505
GET

https://avatars.githubusercontent.com/u/123590232?s=64&v=4

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/123590232?s=64&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "1d9f1acf397d81e762e9ede9d36dd95eb2e889d8dc41c4f240aa17ffcd5ff02f"
last-modified: Thu, 20 Jul 2023 19:54:24 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 10AC:164094:309124:3D1966:66B170F1
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600075-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1724144793.523798,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: a4e664ef965541e83a33d00f90d4f6b7f1e722a5
expires: Tue, 20 Aug 2024 09:11:32 GMT
source-age: 1239974
vary: Authorization,Accept-Encoding
content-length: 1266
GET

https://avatars.githubusercontent.com/u/63458929?v=4&size=40

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/63458929?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "e25efc2f3c542a995df70f85198b7fd6184be4700ec9756e00c0a8fd9e7a124c"
last-modified: Sat, 02 Aug 2014 03:43:57 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 37E5:AF5B9:462FA1:5772B6:66A9C936
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600075-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1724144794.846573,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: a69abda086d6b1825b5b633a8fccc0cd709bc9fe
expires: Tue, 20 Aug 2024 09:11:33 GMT
source-age: 1741665
vary: Authorization,Accept-Encoding
content-length: 1505
GET

https://avatars.githubusercontent.com/u/123590232?v=4&size=40

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/123590232?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "7092780138ee29ef74ab07ab33208aed411686853b3bcef4814b6c7687153094"
last-modified: Thu, 20 Jul 2023 19:54:24 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 0BAA:1CB1B5:356256:424EE4:66B2B85B
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:08:19 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600075-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1724144900.921950,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 4a66b75f03d5aac48a6b11d470c7a7d56451743e
expires: Tue, 20 Aug 2024 09:13:19 GMT
source-age: 1156264
vary: Authorization,Accept-Encoding
content-length: 1014
GET

https://avatars.githubusercontent.com/u/116862894?v=4&size=40

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/116862894?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "1a2c75bc6819cc7d7d45461d01f0bbfa27daa2f4f0217bb65a1fd28ad877f988"
last-modified: Fri, 28 Oct 2022 05:14:24 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 5936:308BA:291AC:31C88:66C45D82
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:10:26 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600075-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1724145026.035258,VS0,VE228
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 0f70e77d3dd2afc0aec79d2d86d8339b3e8e30c3
expires: Tue, 20 Aug 2024 09:15:26 GMT
source-age: 0
vary: Authorization,Accept-Encoding
content-length: 4606
GET

https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico HTTP/2.0
host: raw.githubusercontent.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: image/vnd.microsoft.icon
etag: W/"a9a2217c1ffc82295457a9efaae5812b31e7d1f36bf4f913d02a6357d94a0c81"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: D1CB:338F78:31B032:3E28BF:66C45D9B
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:10:53 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600075-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1724145054.522015,VS0,VE166
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 664b999ec897f46c58851b6acd4cbe625c07cc86
expires: Tue, 20 Aug 2024 09:15:53 GMT
source-age: 0
content-length: 128206
DNS

user-images.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

user-images.githubusercontent.com

IN A

Response

user-images.githubusercontent.com

IN A

185.199.111.133

user-images.githubusercontent.com

IN A

185.199.109.133

user-images.githubusercontent.com

IN A

185.199.110.133

user-images.githubusercontent.com

IN A

185.199.108.133
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR

Response
DNS

81.144.22.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

81.144.22.2.in-addr.arpa

IN PTR

Response

81.144.22.2.in-addr.arpa

IN PTR

a2-22-144-81deploystaticakamaitechnologiescom
DNS

167.154.64.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

167.154.64.172.in-addr.arpa

IN PTR

Response
DNS

154.110.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

154.110.199.185.in-addr.arpa

IN PTR

Response

154.110.199.185.in-addr.arpa

IN PTR

cdn-185-199-110-154githubcom
DNS

133.109.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.109.199.185.in-addr.arpa

IN PTR

Response

133.109.199.185.in-addr.arpa

IN PTR

cdn-185-199-109-133githubcom
GET

https://github.githubassets.com/favicons/favicon.svg

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /favicons/favicon.svg HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
last-modified: Thu, 19 Oct 2023 22:56:36 GMT
etag: 0x8DBD0F6A5D50EA4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 161
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600072-LCY
x-cache: HIT, HIT
x-cache-hits: 1517404, 3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: abacc1f4c06da8782c49af933450fa4f877b256f
content-length: 959
GET

https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/apple-touch-icon-144x144-b882e354c005.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: image/png
last-modified: Thu, 19 Oct 2023 22:56:17 GMT
etag: 0x8DBD0F69A3B5496
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 358849
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600072-LCY
x-cache: HIT, HIT
x-cache-hits: 8, 147
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b1a0a2074d3fb724a7c466ee2f28d95d27574f63
content-length: 14426
GET

https://github.githubassets.com/favicons/favicon.png

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /favicons/favicon.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/png
last-modified: Thu, 19 Oct 2023 22:56:36 GMT
etag: 0x8DBD0F6A5D47312
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:06:33 GMT
age: 136
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600072-LCY
x-cache: HIT, HIT
x-cache-hits: 141842, 1
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f0d1386858991f01cbab93f57c9b2e428e6b310a
content-length: 958
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1016
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:34 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002036
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A0FBE4:E2C5B6:66C45C99
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1311
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:34 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002599
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A0FBE4:E2C5B7:66C45C9A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1324
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:35 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002089
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A0FF12:E2C99D:66C45C9A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1530
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:35 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002769
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A0FF4E:E2C9E0:66C45C9B
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1385
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:43 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002384
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A10BDD:E2D9C1:66C45C9B
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1016
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:47 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002944
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1148F:E2E47D:66C45CA3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1309
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:47 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001579
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A114D7:E2E4D6:66C45CA7
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1682
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:06:59 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003699
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A12929:E2FEAA:66C45CA7
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1110
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:07:00 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001778
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A12BEC:E30210:66C45CB3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1095
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:07:00 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002823
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A12BEC:E30211:66C45CB4
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1080
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:07:01 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003039
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A12C8D:E302D2:66C45CB4
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1586
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:07:01 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003005
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A12CAF:E302F6:66C45CB5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1600
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:07:06 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003926
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A136A4:E30F27:66C45CB5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1397
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:07:46 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002766
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1806A:E36B3D:66C45CBA
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1017
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:00 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002223
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1979C:E388A4:66C45CE2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1311
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:00 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003356
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A197ED:E3891A:66C45CF0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1381
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:12 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002260
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1AF37:E3A5DA:66C45CF0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1531
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:12 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002945
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1AF90:E3A63F:66C45CFC
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1106
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:13 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002102
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1B097:E3A788:66C45CFD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1091
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:13 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002626
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1B097:E3A787:66C45CFC
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1496
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:14 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.123247
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1B35D:E3AAE4:66C45CFD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1208
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:19 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003906
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1BBE2:E3B5A3:66C45CFE
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1096
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:19 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003251
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1BC97:E3B674:66C45D03
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1081
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:19 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002633
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1BC97:E3B676:66C45D03
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1165
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:19 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.110285
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1BCA0:E3B682:66C45D03
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1417
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:29 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002082
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1D0DD:E3CF6D:66C45D03
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1192
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002589
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A1FF76:E40997:66C45D0D
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1084
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003256
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A20031:E40A90:66C45D28
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1069
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001969
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A20034:E40A94:66C45D28
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1163
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:08:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003762
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A20043:E40AA4:66C45D28
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1450
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:09:11 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002933
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A21BFB:E42D4E:66C45D28
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1090
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:25 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002603
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2A17E:E4D431:66C45D37
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1060
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:25 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003668
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2A1EA:E4D4AA:66C45D81
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1386
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:25 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002681
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2A24A:E4D521:66C45D81
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1452
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:28 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002360
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2A755:E4DB7A:66C45D81
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1611
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:28 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002025
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2A791:E4DBCC:66C45D84
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1492
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003106
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2B513:E4EC8C:66C45D84
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1185
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002228
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2B5EB:E4ED80:66C45D8C
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1124
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002659
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2B5EB:E4ED81:66C45D8C
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1109
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002685
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2B5EB:E4ED83:66C45D8C
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1507
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001907
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2B62B:E4EDDB:66C45D8C
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1240
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:49 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002334
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2CF22:E50CE8:66C45D8C
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1139
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:50 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003151
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2CFC7:E50DB9:66C45D99
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1112
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:50 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002485
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2CFCF:E50DC2:66C45D9A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1097
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:50 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002406
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2CFD1:E50DC6:66C45D9A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1502
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:10:50 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.049068
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2CFEF:E50DE4:66C45D9A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1133
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003266
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2F36E:E539F0:66C45D9A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1112
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002423
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2F36F:E539F3:66C45DAD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1097
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002805
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2F36F:E539F4:66C45DAD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1082
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002166
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2F3D4:E53A76:66C45DAD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1402
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002291
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2F3DC:E53A7F:66C45DAD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1420
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:13 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001674
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2FC4A:E544F4:66C45DAD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1227
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:14 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002535
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2FC81:E5452B:66C45DB1
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1563
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:14 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003103
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2FCAE:E54557:66C45DB2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1174
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:14 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002779
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2FD36:E54613:66C45DB2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1110
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:14 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002314
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2FD3F:E54622:66C45DB2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1095
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:14 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003914
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2FD3F:E54620:66C45DB2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1504
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:14 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002469
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A2FD5F:E54644:66C45DB2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1233
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:31 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002597
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A31E79:E56EE3:66C45DB2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1464
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:31 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002730
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A31E8A:E56EFF:66C45DC3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1197
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:31 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003705
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A31EF1:E56F80:66C45DC3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1126
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:31 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002505
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A31EF4:E56F86:66C45DC3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1111
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:31 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002088
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A31EF5:E56F87:66C45DC3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1500
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:31 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002417
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A31F1C:E56FB4:66C45DC3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1253
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:34 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002267
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32418:E575DC:66C45DC3
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1212
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:34 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001999
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A324BD:E576A1:66C45DC6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1134
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:34 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002080
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A324C3:E576A2:66C45DC6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1119
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:34 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001700
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A324C7:E576A8:66C45DC6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1269
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:35 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003607
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A326F1:E5795B:66C45DC6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1221
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003872
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A3276F:E57A0C:66C45DC7
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1150
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002477
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A3277B:E57A16:66C45DC8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1135
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:36 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002289
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A3277B:E57A15:66C45DC8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1282
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:37 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002387
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A3295A:E57C83:66C45DC8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1224
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:37 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002884
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A329DC:E57D2C:66C45DC9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1144
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:37 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002229
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A329E0:E57D30:66C45DC9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1129
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:37 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002292
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A329E1:E57D32:66C45DC9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1258
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:38 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003141
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32BC8:E57FB2:66C45DC9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1209
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:39 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003101
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32CE1:E58120:66C45DCA
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1108
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:39 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003233
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32CE4:E58126:66C45DCB
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1093
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:39 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003538
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32CE4:E58127:66C45DCB
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1223
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:40 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002305
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32F43:E5841F:66C45DCB
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1172
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:41 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003138
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32FD8:E584DF:66C45DCC
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1110
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:41 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002428
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32FD9:E584E1:66C45DCD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1095
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:41 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002406
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32FD9:E584E3:66C45DCD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1504
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:41 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002376
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A32FFC:E58507:66C45DCD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1226
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:43 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002847
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33358:E58959:66C45DCF
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1191
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:43 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002469
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33358:E5895B:66C45DCF
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1112
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:43 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003049
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33358:E58958:66C45DCD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1097
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:43 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002678
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33358:E5895C:66C45DCF
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1486
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:43 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.004292
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33358:E5895A:66C45DCF
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1213
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002763
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33544:E58BB1:66C45DCF
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1159
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003477
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A335E0:E58C83:66C45DD0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1082
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002320
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A335E7:E58C89:66C45DD0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1067
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003946
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A335E7:E58C88:66C45DD0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1476
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.005890
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33603:E58CA6:66C45DD0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1204
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:48 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003276
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33B61:E5937D:66C45DD0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1181
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:48 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002866
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33C72:E594D8:66C45DD4
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1124
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:49 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002285
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33DC0:E59681:66C45DD4
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1109
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:49 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.128437
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33DC0:E59682:66C45DD5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1498
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:49 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002614
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33E09:E596D4:66C45DD5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1229
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:49 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002020
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A33E95:E59782:66C45DD5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1090
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:50 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003017
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A3402E:E59979:66C45DD5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1075
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:50 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.132126
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A3402E:E5997A:66C45DD6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1471
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:50 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003372
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A3406B:E599C2:66C45DD6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1173
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:11:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003103
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A34AB7:E5A699:66C45DD6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1094
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:12:06 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002645
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A35BA6:E5BBFE:66C45DDC
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1366
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:12:06 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002462
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A35BDD:E5BC42:66C45DE6
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1445
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:12:06 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003149
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DE93:24393E:A35CBC:E5BD81:66C45DE6
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1363
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:06:34 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148394
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C931:118926:9F3E5D:A8102A:66C45C99
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 259
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:06:40 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148400
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C931:118926:9F43CE:A815B6:66C45C9A
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1088
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:06:47 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148407
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C931:118926:9F48CB:A81AE8:66C45CA0
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 373
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:06:59 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148419
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C931:118926:9F520B:A82464:66C45CA7
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 276
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:07:00 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148420
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C931:118926:9F528D:A824E5:66C45CB3
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 2550
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:07:01 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148421
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C931:118926:9F5394:A825FF:66C45CB4
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 578
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:07:06 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148426
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C931:118926:9F5789:A82A07:66C45CB5
DNS

21.114.82.140.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.114.82.140.in-addr.arpa

IN PTR

Response

21.114.82.140.in-addr.arpa

IN PTR

lb-140-82-114-21-iadgithubcom
DNS

210.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.156.26.20.in-addr.arpa

IN PTR

Response
DNS

codeload.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

codeload.github.com

IN A

Response

codeload.github.com

IN A

20.26.156.216
GET

https://codeload.github.com/Da2dalus/The-MALWARE-Repo/zip/refs/heads/master

msedge.exe

Remote address:

20.26.156.216:443

Request

GET /Da2dalus/The-MALWARE-Repo/zip/refs/heads/master HTTP/2.0
host: codeload.github.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

access-control-allow-origin: https://render.githubusercontent.com
content-disposition: attachment; filename=The-MALWARE-Repo-master.zip
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/zip
cross-origin-resource-policy: cross-origin
etag: W/"c78eabe799ca0e23e77f67470f9246428233eb97f9aed155e647cd52729d1523"
strict-transport-security: max-age=31536000
vary: Authorization,Accept-Encoding,Origin
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
date: Tue, 20 Aug 2024 09:06:39 GMT
x-github-request-id: C8DF:878E1:41A53:E8CE5:66C45C9E
GET

https://codeload.github.com/SysToad64/GDI-and-Bytebeats/zip/refs/heads/main

msedge.exe

Remote address:

20.26.156.216:443

Request

GET /SysToad64/GDI-and-Bytebeats/zip/refs/heads/main HTTP/2.0
host: codeload.github.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

access-control-allow-origin: https://render.githubusercontent.com
content-disposition: attachment; filename=GDI-and-Bytebeats-main.zip
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/zip
cross-origin-resource-policy: cross-origin
etag: W/"ba1b8ddeb6e4ae827c1bb95dd4ba1672dd876105a2d3633f2b9004349d213e67"
strict-transport-security: max-age=31536000
vary: Authorization,Accept-Encoding,Origin
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
date: Tue, 20 Aug 2024 09:12:13 GMT
x-github-request-id: C8DF:878E1:42035:E973F:66C45D88
DNS

pulsar.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

pulsar.ebay.com.au

IN A

Response

pulsar.ebay.com.au

IN CNAME

pulsar.ebay.com

pulsar.ebay.com

IN CNAME

pulsar.ebay.com.edgekey.net

pulsar.ebay.com.edgekey.net

IN CNAME

e207850.a.akamaiedge.net

e207850.a.akamaiedge.net

IN A

104.117.183.114

e207850.a.akamaiedge.net

IN A

104.117.183.24

e207850.a.akamaiedge.net

IN A

104.117.183.120

e207850.a.akamaiedge.net

IN A

104.117.183.115

e207850.a.akamaiedge.net

IN A

104.117.183.40

e207850.a.akamaiedge.net

IN A

104.117.183.72

e207850.a.akamaiedge.net

IN A

104.117.183.33
POST

https://pulsar.ebay.com.au/plsr/mpe/0/DFLT/9?

msedge.exe

Remote address:

104.117.183.114:443

Request

POST /plsr/mpe/0/DFLT/9? HTTP/2.0
host: pulsar.ebay.com.au
content-length: 11916
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: ebay=%5Esbf%3D%23000000%5E
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NDczOTA3OCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMiUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMSU3RA==
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: dp1=bbl/GB6a86c368^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilj+hFQzRSMEFOAMoAIGqGw2g2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGNwNh1EJ00pXkkmUdTN+YQrpZeWDK5k
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAlDGU2ORAQAA8/gIbxh63GKvZEzW5qDRSJobWCtXpevfEuxoLo/Mv5BKxpPOuIvTXaws/7VG17g3DFNUayPNzHxsHxn2FdtJoqHw7pVCetK+PGQRsrPdD1O/23ct3OanUKrzBhCaaFP2yoCNShY0E4iruPNZrTU10ox8k1sdeDVi2+4RGwcryVRQNzvyrsuv5MLM2WVRLFlTet2OEX+uPNNy1KINkQhxpejvFJGe9gW1QPjczOpFFXfzIw==~1

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
rlogid: t6bkbbp%3F%3Cumjgig%60u*5rq1%3A(rbpv661%3C-1916f09cfea-0x208
x-envoy-upstream-service-time: 34
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ04
expires: Tue, 20 Aug 2024 09:06:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:06:39 GMT
content-length: 0
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: dp1=bbl/GB6a86c39f^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:06:39 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilkB9FQzRSMEFOAMoAIGqGw582ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGOnNxJlhgfvkqPrAiX+SgtBMhTkMfXu; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:06:39 GMT; HttpOnly; Secure
strict-transport-security: max-age=31536000
DNS

114.183.117.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

114.183.117.104.in-addr.arpa

IN PTR

Response

114.183.117.104.in-addr.arpa

IN PTR

a104-117-183-114deploystaticakamaitechnologiescom
DNS

216.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

216.156.26.20.in-addr.arpa

IN PTR

Response
DNS

21.236.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.236.111.52.in-addr.arpa

IN PTR

Response
DNS

tse1.mm.bing.net

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A

Response

tse1.mm.bing.net

IN CNAME

mm-mm.bing.net.trafficmanager.net

mm-mm.bing.net.trafficmanager.net

IN CNAME

ax-0001.ax-msedge.net

ax-0001.ax-msedge.net

IN A

150.171.27.10

ax-0001.ax-msedge.net

IN A

150.171.28.10
GET

https://tse1.mm.bing.net/th?id=OADD2.10239317300964_1C92FDN74123R86HE&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

150.171.27.10:443

Request

GET /th?id=OADD2.10239317300964_1C92FDN74123R86HE&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 258855
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A8B07B7D6FF443F29659E382A26F0BC6 Ref B: LON04EDGE0621 Ref C: 2024-08-20T09:07:13Z
date: Tue, 20 Aug 2024 09:07:12 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239360615986_1M5N6Y5ACPFWCCI4D&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

150.171.27.10:443

Request

GET /th?id=OADD2.10239360615986_1M5N6Y5ACPFWCCI4D&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 810507
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F08806D01F4540B8AC78857F397C496C Ref B: LON04EDGE0621 Ref C: 2024-08-20T09:07:13Z
date: Tue, 20 Aug 2024 09:07:12 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239317301397_1RRG7O37Z0P13Z6K4&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

150.171.27.10:443

Request

GET /th?id=OADD2.10239317301397_1RRG7O37Z0P13Z6K4&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 917163
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0C2E328B335D46698552F6314FCCC695 Ref B: LON04EDGE0621 Ref C: 2024-08-20T09:07:13Z
date: Tue, 20 Aug 2024 09:07:12 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239360615987_16QLWX2YIZJRGGD7R&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

150.171.27.10:443

Request

GET /th?id=OADD2.10239360615987_16QLWX2YIZJRGGD7R&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 305259
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B136991B216E4948B6AABF2BDD3A0E44 Ref B: LON04EDGE0621 Ref C: 2024-08-20T09:07:13Z
date: Tue, 20 Aug 2024 09:07:12 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239357290388_16CMXFO1MXGSZHTL5&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

150.171.27.10:443

Request

GET /th?id=OADD2.10239357290388_16CMXFO1MXGSZHTL5&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 308655
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EBC7AAE4372948F787CF7CA991B56683 Ref B: LON04EDGE0621 Ref C: 2024-08-20T09:07:13Z
date: Tue, 20 Aug 2024 09:07:12 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239357290389_1WHXB2JL6W3CH3HF1&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

150.171.27.10:443

Request

GET /th?id=OADD2.10239357290389_1WHXB2JL6W3CH3HF1&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 397494
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 30315C3D7B034BE4938D879EFCAD1897 Ref B: LON04EDGE0621 Ref C: 2024-08-20T09:07:13Z
date: Tue, 20 Aug 2024 09:07:13 GMT
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

173.222.211.40

a1851.dscg2.akamai.net

IN A

173.222.211.41
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE

msedge.exe

Remote address:

173.222.211.40:443

Request

OPTIONS /api/report?cat=bingth&ndcParam=QUZE HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://th.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 429 Too Many Requests

Content-Length: 0
Date: Tue, 20 Aug 2024 09:07:27 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.24d3dead.1724144847.32e767fc
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: *
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp

msedge.exe

Remote address:

173.222.211.40:443

Request

OPTIONS /api/report?cat=bingth&ndcParam=QWthbWFp HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://www.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Length: 0
Access-Control-Allow-Headers: content-type
Date: Tue, 20 Aug 2024 09:07:28 GMT
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.24d3dead.1724144847.32e76a51
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: *
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
DNS

40.211.222.173.in-addr.arpa

Remote address:

8.8.8.8:53

Request

40.211.222.173.in-addr.arpa

IN PTR

Response

40.211.222.173.in-addr.arpa

IN PTR

a173-222-211-40deploystaticakamaitechnologiescom
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 373
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:07:46 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148466
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E316:873C6:1149AE0:12706E0:66C45CE2
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 366
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:08:00 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148480
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E316:873C6:114A113:1270D58:66C45CE2
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 256
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:08:12 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148492
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E316:873C6:114A7A0:1271432:66C45CF0
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1991
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:08:18 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148498
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E316:873C6:114AA6F:1271717:66C45CFC
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 894
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:08:24 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148504
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E316:873C6:114AD75:1271A4E:66C45D02
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 405
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:08:30 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148509
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E316:873C6:114AF72:1271C68:66C45D08
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 484
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:08:56 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148536
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E316:873C6:114BBA6:127294D:66C45D0E
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/Da2dalus/The-MALWARE-Repo

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"acdc448280fa22884ad8470d97056147"

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"179f3d1b91b3c318d2a7f0da460a7315"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: FBBD:370F05:1437005:16FAF95:66C45CEE
GET

https://github.com/Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"75a11da44c802486bc6f65640aa48a73"

Response

HTTP/2.0 204

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: FBBD:370F05:14370E3:16FB083:66C45CEF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: FBBD:370F05:14370E3:16FB084:66C45CEF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"56a3b41b3adb53ca7fce5703eb10dacf"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
x-github-request-id: FBBD:370F05:14370F1:16FB092:66C45CEF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"020ffed793af5adec2854b0a4211d94f"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"8902c7088699d5c25402933819980cd9"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
x-github-request-id: FBBD:370F05:14370F1:16FB093:66C45CEF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"07da86d5c2d3c431a0aa2221ab777c22"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"020ffed793af5adec2854b0a4211d94f"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: FBBD:370F05:14370F1:16FB090:66C45CEF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/branch-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/branch-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"56a3b41b3adb53ca7fce5703eb10dacf"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"07da86d5c2d3c431a0aa2221ab777c22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: FBBD:370F05:14370F1:16FB091:66C45CEF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"8902c7088699d5c25402933819980cd9"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:07:59 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"75a11da44c802486bc6f65640aa48a73"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
x-github-request-id: FBBD:370F05:14370E3:16FB082:66C45CEF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:12 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7f3c093d72abd34faa77d9a37b5dac9c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
x-github-request-id: FBBD:370F05:1437A27:16FBA7E:66C45CF0
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Banking-Malware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Banking-Malware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:13 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: FBBD:370F05:1437A87:16FBADB:66C45CFD
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Banking-Malware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Banking-Malware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:13 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3def99658d0d27859dbba34a2e54e61a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 450
x-github-request-id: FBBD:370F05:1437A87:16FBADA:66C45CFD
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Banking-Malware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Banking-Malware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:13 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a6813c3783e788ae23071344d4d597b7"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 440
x-github-request-id: FBBD:370F05:1437A87:16FBAD9:66C45CFC
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a31da4e0678cc6095fe4a9200ba4b07c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1484
x-github-request-id: FBBD:370F05:1437E50:16FBEEE:66C45CFD
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Email-Worm

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Email-Worm HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: FBBD:370F05:1437E89:16FBF29:66C45D03
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Email-Worm

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Email-Worm HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7b1a4be51f1fa69ccaa7df2a6e5a53fa"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 432
x-github-request-id: FBBD:370F05:1437E89:16FBF27:66C45D03
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Email-Worm

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Email-Worm HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d002a9a26d3245d1c40661250a19aaab"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 781
x-github-request-id: FBBD:370F05:1437E89:16FBF28:66C45D03
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.202.201

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.42

s3-w.us-east-1.amazonaws.com

IN A

52.216.62.217

s3-w.us-east-1.amazonaws.com

IN A

3.5.30.24

s3-w.us-east-1.amazonaws.com

IN A

52.216.43.185

s3-w.us-east-1.amazonaws.com

IN A

3.5.22.0

s3-w.us-east-1.amazonaws.com

IN A

3.5.22.90

s3-w.us-east-1.amazonaws.com

IN A

16.182.72.33
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree/master/Joke HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"eb2469e35a2cfda119f721e8866b171a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1282
x-github-request-id: EC50:30563B:1AFBD17:1EDB1A6:66C45D28
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Joke

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Joke HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: EC50:30563B:1AFBD45:1EDB1D9:66C45D28
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Joke

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Joke HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"304820256d0e317f8bbecb208072f788"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 432
x-github-request-id: EC50:30563B:1AFBD45:1EDB1D7:66C45D28
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Joke

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Joke HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:08:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"2891dc8918896838895feebf229d440d"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 540
x-github-request-id: EC50:30563B:1AFBD45:1EDB1D8:66C45D28
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.194

e86303.dscx.akamaiedge.net

IN A

95.101.129.202

e86303.dscx.akamaiedge.net

IN A

95.101.129.209

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.208

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.201

e86303.dscx.akamaiedge.net

IN A

95.101.129.234

e86303.dscx.akamaiedge.net

IN A

95.101.129.235
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.226

e86303.dscx.akamaiedge.net

IN A

95.101.129.209

e86303.dscx.akamaiedge.net

IN A

95.101.129.218

e86303.dscx.akamaiedge.net

IN A

95.101.129.233

e86303.dscx.akamaiedge.net

IN A

95.101.129.201

e86303.dscx.akamaiedge.net

IN A

95.101.129.208

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.224
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.201

e86303.dscx.akamaiedge.net

IN A

95.101.129.209

e86303.dscx.akamaiedge.net

IN A

95.101.129.235

e86303.dscx.akamaiedge.net

IN A

95.101.129.218

e86303.dscx.akamaiedge.net

IN A

95.101.129.194

e86303.dscx.akamaiedge.net

IN A

95.101.129.202

e86303.dscx.akamaiedge.net

IN A

95.101.129.208
DNS

200.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.129.101.95.in-addr.arpa

IN PTR

Response

200.129.101.95.in-addr.arpa

IN PTR

a95-101-129-200deploystaticakamaitechnologiescom
DNS

www.youtube.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.youtube.com

IN A

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN A

216.58.214.174

youtube-ui.l.google.com

IN A

172.217.20.206

youtube-ui.l.google.com

IN A

216.58.215.46

youtube-ui.l.google.com

IN A

172.217.18.206

youtube-ui.l.google.com

IN A

142.250.75.238

youtube-ui.l.google.com

IN A

142.250.178.142

youtube-ui.l.google.com

IN A

142.250.179.110

youtube-ui.l.google.com

IN A

142.250.201.174

youtube-ui.l.google.com

IN A

172.217.20.174

youtube-ui.l.google.com

IN A

142.250.179.78

youtube-ui.l.google.com

IN A

216.58.213.78
GET

https://www.youtube.com/

msedge.exe

Remote address:

216.58.214.174:443

Request

GET / HTTP/2.0
host: www.youtube.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

i.ytimg.com

msedge.exe

Remote address:

8.8.8.8:53

Request

i.ytimg.com

IN A

Response

i.ytimg.com

IN A

172.217.20.214

i.ytimg.com

IN A

142.250.201.182

i.ytimg.com

IN A

216.58.214.86

i.ytimg.com

IN A

142.250.75.246

i.ytimg.com

IN A

142.250.178.150

i.ytimg.com

IN A

142.250.179.118

i.ytimg.com

IN A

216.58.213.86

i.ytimg.com

IN A

172.217.20.182

i.ytimg.com

IN A

142.250.74.246

i.ytimg.com

IN A

216.58.214.182

i.ytimg.com

IN A

142.250.179.86
GET

https://i.ytimg.com/generate_204

msedge.exe

Remote address:

172.217.20.214:443

Request

GET /generate_204 HTTP/2.0
host: i.ytimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

174.214.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

174.214.58.216.in-addr.arpa

IN PTR

Response

174.214.58.216.in-addr.arpa

IN PTR

mad01s26-in-f141e100net

174.214.58.216.in-addr.arpa

IN PTR

par10s42-in-f14�I

174.214.58.216.in-addr.arpa

IN PTR

mad01s26-in-f174�I
DNS

214.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

214.20.217.172.in-addr.arpa

IN PTR

Response

214.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f2141e100net

214.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f22�J

214.20.217.172.in-addr.arpa

IN PTR

par10s50-in-f22�J
DNS

accounts.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.102.84
GET

https://accounts.google.com/ServiceLogin?service=youtube&uilel=3&passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Fsignin%3Faction_handle_signin%3Dtrue%26app%3Ddesktop%26hl%3Den%26next%3D%252Fsignin_passive%26feature%3Dpassive&hl=en

msedge.exe

Remote address:

142.250.102.84:443

Request

GET /ServiceLogin?service=youtube&uilel=3&passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Fsignin%3Faction_handle_signin%3Dtrue%26app%3Ddesktop%26hl%3Den%26next%3D%252Fsignin_passive%26feature%3Dpassive&hl=en HTTP/2.0
host: accounts.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

67.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.179.250.142.in-addr.arpa

IN PTR

Response

67.179.250.142.in-addr.arpa

IN PTR

par21s19-in-f31e100net
DNS

84.102.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.102.250.142.in-addr.arpa

IN PTR

Response

84.102.250.142.in-addr.arpa

IN PTR

rb-in-f841e100net
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.20.196
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.20.196
DNS

play.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

play.google.com

IN A

Response

play.google.com

IN A

142.250.201.174
DNS

ep2.adtrafficquality.google

msedge.exe

Remote address:

8.8.8.8:53

Request

ep2.adtrafficquality.google

IN A

Response

ep2.adtrafficquality.google

IN A

216.58.215.33
OPTIONS

https://play.google.com/log?format=json&hasfast=true&authuser=0

msedge.exe

Remote address:

142.250.201.174:443

Request

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/2.0
host: play.google.com
accept: */*
access-control-request-method: POST
access-control-request-headers: x-goog-authuser
origin: https://www.youtube.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-cR1o-DvQQrEYBEXtnav0zQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
permissions-policy: unload=()
date: Tue, 20 Aug 2024 09:10:00 GMT
server: gws
content-length: 2200
permissions-policy: unload=()
server: gws
content-length: 2200
OPTIONS

https://suggestqueries-clients6.youtube.com/complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=0&gs_id=1&q=&xhr=t&xssi=t

msedge.exe

Remote address:

142.250.201.174:443

Request

OPTIONS /complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=0&gs_id=1&q=&xhr=t&xssi=t HTTP/2.0
host: suggestqueries-clients6.youtube.com
accept: */*
access-control-request-method: GET
access-control-request-headers: x-goog-visitor-id
origin: https://www.youtube.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: same-site
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
OPTIONS

https://suggestqueries-clients6.youtube.com/complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=1&gs_id=4&q=p&xhr=t&xssi=t

msedge.exe

Remote address:

142.250.201.174:443

Request

OPTIONS /complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=1&gs_id=4&q=p&xhr=t&xssi=t HTTP/2.0
host: suggestqueries-clients6.youtube.com
accept: */*
access-control-request-method: GET
access-control-request-headers: x-goog-visitor-id
origin: https://www.youtube.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: same-site
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
OPTIONS

https://suggestqueries-clients6.youtube.com/complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=2&gs_id=8&q=po&xhr=t&xssi=t

msedge.exe

Remote address:

142.250.201.174:443

Request

OPTIONS /complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=2&gs_id=8&q=po&xhr=t&xssi=t HTTP/2.0
host: suggestqueries-clients6.youtube.com
accept: */*
access-control-request-method: GET
access-control-request-headers: x-goog-visitor-id
origin: https://www.youtube.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: same-site
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

67.214.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.214.58.216.in-addr.arpa

IN PTR

Response

67.214.58.216.in-addr.arpa

IN PTR

par10s39-in-f31e100net

67.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f3�G

67.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f67�G
DNS

174.201.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

174.201.250.142.in-addr.arpa

IN PTR

Response

174.201.250.142.in-addr.arpa

IN PTR

par21s23-in-f141e100net
DNS

jnn-pa.googleapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

jnn-pa.googleapis.com

IN A

Response

jnn-pa.googleapis.com

IN A

142.250.201.170

jnn-pa.googleapis.com

IN A

216.58.215.42

jnn-pa.googleapis.com

IN A

172.217.20.202

jnn-pa.googleapis.com

IN A

216.58.214.170

jnn-pa.googleapis.com

IN A

172.217.18.202

jnn-pa.googleapis.com

IN A

142.250.178.138

jnn-pa.googleapis.com

IN A

142.250.179.106

jnn-pa.googleapis.com

IN A

172.217.20.170

jnn-pa.googleapis.com

IN A

142.250.179.74

jnn-pa.googleapis.com

IN A

142.250.75.234

jnn-pa.googleapis.com

IN A

216.58.213.74
OPTIONS

https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

msedge.exe

Remote address:

142.250.201.170:443

Request

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/2.0
host: jnn-pa.googleapis.com
accept: */*
access-control-request-method: POST
access-control-request-headers: content-type,x-goog-api-key,x-user-agent
origin: https://www.youtube.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

170.201.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

170.201.250.142.in-addr.arpa

IN PTR

Response

170.201.250.142.in-addr.arpa

IN PTR

par21s23-in-f101e100net
DNS

youtube.com

msedge.exe

Remote address:

8.8.8.8:53

Request

youtube.com

IN A

Response

youtube.com

IN A

142.250.74.238
GET

https://youtube.com/

msedge.exe

Remote address:

142.250.74.238:443

Request

GET / HTTP/2.0
host: youtube.com
pragma: no-cache
cache-control: no-cache
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.youtube.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

238.74.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

238.74.250.142.in-addr.arpa

IN PTR

Response

238.74.250.142.in-addr.arpa

IN PTR

par10s40-in-f141e100net
DNS

consent.youtube.com

msedge.exe

Remote address:

8.8.8.8:53

Request

consent.youtube.com

IN A

Response

consent.youtube.com

IN A

172.217.18.206
DNS

consent.youtube.com

msedge.exe

Remote address:

8.8.8.8:53

Request

consent.youtube.com

IN A
DNS

206.18.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

206.18.217.172.in-addr.arpa

IN PTR

Response

206.18.217.172.in-addr.arpa

IN PTR

ham02s14-in-f2061e100net

206.18.217.172.in-addr.arpa

IN PTR

par10s38-in-f14�J
DNS

206.18.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

206.18.217.172.in-addr.arpa

IN PTR

Response

206.18.217.172.in-addr.arpa

IN PTR

ham02s14-in-f2061e100net

206.18.217.172.in-addr.arpa

IN PTR

par10s38-in-f14�J
DNS

static.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

static.doubleclick.net

IN A

Response

static.doubleclick.net

IN A

142.250.74.230
GET

https://static.doubleclick.net/instream/ad_status.js

msedge.exe

Remote address:

142.250.74.230:443

Request

GET /instream/ad_status.js HTTP/2.0
host: static.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

230.74.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

230.74.250.142.in-addr.arpa

IN PTR

Response

230.74.250.142.in-addr.arpa

IN PTR

par10s40-in-f61e100net
DNS

suggestqueries-clients6.youtube.com

msedge.exe

Remote address:

8.8.8.8:53

Request

suggestqueries-clients6.youtube.com

IN A

Response

suggestqueries-clients6.youtube.com

IN A

142.250.201.174
DNS

yt3.ggpht.com

msedge.exe

Remote address:

8.8.8.8:53

Request

yt3.ggpht.com

IN A

Response

yt3.ggpht.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

216.58.215.33
DNS

yt3.ggpht.com

msedge.exe

Remote address:

8.8.8.8:53

Request

yt3.ggpht.com

IN A
DNS

yt3.ggpht.com

msedge.exe

Remote address:

8.8.8.8:53

Request

yt3.ggpht.com

IN A
GET

https://yt3.ggpht.com/3Ejg9L07C6Jt7TA87Zb4LNb0AFSZPv2jxaOgLt_piKNsrU6huE-gvdacd8-JIM24hqTqkTSVNw=s68-c-k-c0x00ffffff-no-rj

msedge.exe

Remote address:

216.58.215.33:443

Request

GET /3Ejg9L07C6Jt7TA87Zb4LNb0AFSZPv2jxaOgLt_piKNsrU6huE-gvdacd8-JIM24hqTqkTSVNw=s68-c-k-c0x00ffffff-no-rj HTTP/2.0
host: yt3.ggpht.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://yt3.ggpht.com/SS_d8TvHvTIfRhVKtb-PUHkZqWp2jh_MJNISUcDZc6DikJrVdPo1ewU2Y-RfmP2eHThkTpNW=s68-c-k-c0x00ffffff-no-rj

msedge.exe

Remote address:

216.58.215.33:443

Request

GET /SS_d8TvHvTIfRhVKtb-PUHkZqWp2jh_MJNISUcDZc6DikJrVdPo1ewU2Y-RfmP2eHThkTpNW=s68-c-k-c0x00ffffff-no-rj HTTP/2.0
host: yt3.ggpht.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://yt3.ggpht.com/UljfaLgekOhXwTBA3YNO1gZustoMHdGEFpiAa0o3FJwtI5MFRUwV7MC1TKfgfS6EC09OBmC8mg=s68-c-k-c0x00ffffff-no-rj

msedge.exe

Remote address:

216.58.215.33:443

Request

GET /UljfaLgekOhXwTBA3YNO1gZustoMHdGEFpiAa0o3FJwtI5MFRUwV7MC1TKfgfS6EC09OBmC8mg=s68-c-k-c0x00ffffff-no-rj HTTP/2.0
host: yt3.ggpht.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

33.215.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

33.215.58.216.in-addr.arpa

IN PTR

Response

33.215.58.216.in-addr.arpa

IN PTR

par21s17-in-f11e100net
DNS

rr3---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr3---sn-4g5edn6r.googlevideo.com

IN A

Response

rr3---sn-4g5edn6r.googlevideo.com

IN CNAME

rr3.sn-4g5edn6r.googlevideo.com

rr3.sn-4g5edn6r.googlevideo.com

IN A

74.125.153.200
DNS

rr3---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr3---sn-4g5edn6r.googlevideo.com

IN A

Response

rr3---sn-4g5edn6r.googlevideo.com

IN CNAME

rr3.sn-4g5edn6r.googlevideo.com

rr3.sn-4g5edn6r.googlevideo.com

IN A

74.125.153.200
GET

https://rr3---sn-4g5edn6r.googlevideo.com/generate_204

msedge.exe

Remote address:

74.125.153.200:443

Request

GET /generate_204 HTTP/1.1
Host: rr3---sn-4g5edn6r.googlevideo.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.youtube.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Server: gvs 1.0
Date: Tue, 20 Aug 2024 09:10:09 GMT
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Content-Length: 0
DNS

200.153.125.74.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.153.125.74.in-addr.arpa

IN PTR

Response

200.153.125.74.in-addr.arpa

IN PTR

fra16s58-in-f81e100net
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato HTTP/2.0
host: github.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:24 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"054b738b9bbcade9d644791bfe99d41c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: C6C7:165A3E:41BF00:4B965A:66C45D80
GET

https://github.com/SysToad64/GDI-and-Bytebeats/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:25 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C6C7:165A3E:41BFB8:4B96E9:66C45D80
GET

https://github.com/SysToad64/GDI-and-Bytebeats/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:25 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"2d2f0d4620ffa631cf9357c27a7faa8a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 77
x-github-request-id: C6C7:165A3E:41BFEE:4B972A:66C45D81
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:25 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a5feffcf4f4445361a76527690c47f05"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 448
x-github-request-id: C6C7:165A3E:41BFEE:4B972B:66C45D81
GET

https://github.com/SysToad64/GDI-and-Bytebeats/tree-commit-info/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/tree-commit-info/main/I_Am_a_potato HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:25 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"2d2f0d4620ffa631cf9357c27a7faa8a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41C016:4B9759:66C45D81
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:25 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41BFEE:4B972D:66C45D81
GET

https://github.com/SysToad64/GDI-and-Bytebeats/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"2d2f0d4620ffa631cf9357c27a7faa8a"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:25 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"2d2f0d4620ffa631cf9357c27a7faa8a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41C01E:4B976E:66C45D81
GET

https://github.com/SysToad64/GDI-and-Bytebeats/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"2d2f0d4620ffa631cf9357c27a7faa8a"

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:25 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"0100040923502f25cc7d1123f4f88aa8"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 690
x-github-request-id: C6C7:165A3E:41BFEE:4B972C:66C45D81
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:36 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"56f82253e4c2007a83eefd25c8ddc317"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2235
x-github-request-id: C6C7:165A3E:41C729:4B9EF8:66C45D81
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 404

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:36 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame
www-authenticate: Basic realm="GitHub"
cache-control: no-cache
set-cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
vary: Accept-Encoding, Accept, X-Requested-With
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41C77B:4B9F51:66C45D8C
PUT

https://github.com/repos/preferences

msedge.exe

Remote address:

20.26.156.215:443

Request

PUT /repos/preferences HTTP/2.0
host: github.com
content-length: 393
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: multipart/form-data; boundary=----WebKitFormBoundaryBBmjGdEGTnxrrs2v
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
origin: https://github.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:36 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41C77B:4B9F52:66C45D8C
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=8U1d1Yw%2BBkxddruhoxf77Rx2JvQXR3dIuqV8RQ7CNuBX6cfD8X9JyxaCEHSNy6sPOxXLSsGBipwqAWjrrX4Z0DcYAhy8N%2FU4xwq4rTgi9fp7f5b1FYf%2FMiBkoOKNbPJKVRA2yhL41rmuWtqzxD%2BRKuP2szI8r%2FdZqR7%2B%2BKb8qzIyP5aCVlLkxeozWoiINZF%2BK1Yl%2FGVLA7GlVamz3HoeRhkfkZHhrHK8LGMJ6lz%2FIwX1td7eLkfdaFPjYelVbD9%2FAZsyOaeJuqyXBkHNI0l7Sg%3D%3D--UmQzQcYVxtyk2Sht--U3JjG7nL9ughpCYgXbS1%2Bg%3D%3D
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:36 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"297c30cacd5f963dbe8586216c8b8406"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 433
x-github-request-id: C6C7:165A3E:41C77A:4B9F4E:66C45D8C
GET

https://github.com/SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:40 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/I_Am_a_potato.rc
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C6C7:165A3E:41CA86:4BA29F:66C45D8C
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:50 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"ef904272ec6fe5c04be5ccf83b89da59"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1718
x-github-request-id: C6C7:165A3E:41D078:4BA908:66C45D90
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/potato.ico HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:50 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41D0B7:4BA964:66C45D9A
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/potato.ico HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:50 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d0b296e86d4029709ff7cb59e392f3ae"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 428
x-github-request-id: C6C7:165A3E:41D0B7:4BA95D:66C45D9A
GET

https://github.com/SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/potato.ico HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:53 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C6C7:165A3E:41D2A8:4BAB96:66C45D9A
GET

https://github.com/SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/potato.ico HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:10:53 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C6C7:165A3E:41D2F0:4BABC8:66C45D9D
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D
if-none-match: W/"ef904272ec6fe5c04be5ccf83b89da59"

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:08 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d2c0dfd5dc650f90e3be578f759a7201"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: C6C7:165A3E:41DE9A:4BB828:66C45D9D
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:14 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"2e15e847fd1dc678d26bbf2b821d2bdc"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2867
x-github-request-id: C6C7:165A3E:41E277:4BBC62:66C45DAC
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:14 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41E2D7:4BBCB9:66C45DB2
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:14 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"6f9ea37ae5b9467a44b9c972c3b7842c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 426
x-github-request-id: C6C7:165A3E:41E2D7:4BBCB8:66C45DB2
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:31 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"afdbfa56dee829f63f3b6f4748a6be57"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2588
x-github-request-id: C6C7:165A3E:41EE94:4BC96D:66C45DB2
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.sln

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.sln HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 404

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:31 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame
www-authenticate: Basic realm="GitHub"
cache-control: no-cache
set-cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
vary: Accept-Encoding, Accept, X-Requested-With
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41EEC3:4BC98B:66C45DC3
PUT

https://github.com/repos/preferences

msedge.exe

Remote address:

20.26.156.215:443

Request

PUT /repos/preferences HTTP/2.0
host: github.com
content-length: 393
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: multipart/form-data; boundary=----WebKitFormBoundaryZvxGguIPGmrARG44
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
origin: https://github.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:31 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41EEC3:4BC98E:66C45DC3
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.sln

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.sln HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=qFtOaKt%2F4ArhcCMV%2F9twGqrOv4znfR6KgVn5OGOpUaDiQR5zEVllJn%2F7uTg4uV3yrc3v4ySvnWKBRH6FJRocvTYPzz%2FnsI8pefNdQr%2FJFvzNODMzis5A7BYf2wrU4rrWJ59eCD7lMz6cNL8ydgrks2kVPlIBodvXnLOz0tEv3CoDXD4WgBDOblkMQjUzioUrB%2F5s%2FLOHz50buMUrxRl6n6cQq56LoUSNO7HhNP2HvqXR19zBW3Hysz%2FqOM6FvwvFvSbi4GqLgnjajuHWEHg1SGdUQ9YXHm%2BX2ofpjG1OIBy0jjvK--XKpWL725CsqybQ%2FT--oTFL2l%2B5e7K7EgGabb9Zyg%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:31 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"ce4012e392922e9b2c89a3aba46a234a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 427
x-github-request-id: C6C7:165A3E:41EEC3:4BC98A:66C45DC3
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:34 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"9900759879910b1da14624da10ffc28e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 3921
x-github-request-id: C6C7:165A3E:41F0A2:4BCB9B:66C45DC3
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:34 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41F0DA:4BCBE1:66C45DC6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:34 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"17c9344740d0dfe0febac8672702acee"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 436
x-github-request-id: C6C7:165A3E:41F0D9:4BCBDC:66C45DC6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:35 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"9bd4b0a7222db4768357fbd97de9e914"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2644
x-github-request-id: C6C7:165A3E:41F19C:4BCCCB:66C45DC6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:36 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41F1ED:4BCD21:66C45DC8
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:36 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"eefd9d96f2b7f50990cceabd507e21f8"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 440
x-github-request-id: C6C7:165A3E:41F1EB:4BCD1F:66C45DC8
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:37 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"57c79b29ca765d1013c83474093798f7"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2030
x-github-request-id: C6C7:165A3E:41F2CF:4BCE03:66C45DC8
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:37 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41F30C:4BCE57:66C45DC9
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:37 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"ce4012e392922e9b2c89a3aba46a234a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 427
x-github-request-id: C6C7:165A3E:41F30B:4BCE56:66C45DC9
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:39 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"77dc639412b4f85ccb32de33df683454"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 6320
x-github-request-id: C6C7:165A3E:41F41F:4BCF68:66C45DC9
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/Main.cpp

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/Main.cpp HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:39 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41F455:4BCFA2:66C45DCB
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/Main.cpp

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/Main.cpp HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:39 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a5feffcf4f4445361a76527690c47f05"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 448
x-github-request-id: C6C7:165A3E:41F454:4BCFA1:66C45DCB
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D
if-none-match: W/"2e15e847fd1dc678d26bbf2b821d2bdc"

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:41 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"290f07cdf877e105e10d03c27a89d7c0"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2865
x-github-request-id: C6C7:165A3E:41F528:4BD08E:66C45DCB
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D
if-none-match: W/"6f9ea37ae5b9467a44b9c972c3b7842c"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:41 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41F560:4BD0C4:66C45DCD
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D
if-none-match: W/"488079cfe061b28acb63ba198b60cf00"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:41 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"6f9ea37ae5b9467a44b9c972c3b7842c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41F560:4BD0C2:66C45DCD
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:42 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"435d4cd7644a788a5ae5bd4f89692341"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2386
x-github-request-id: C6C7:165A3E:41F679:4BD1EB:66C45DCD
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/resource.h

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/resource.h HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 404

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:43 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame
www-authenticate: Basic realm="GitHub"
cache-control: no-cache
set-cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
vary: Accept-Encoding, Accept, X-Requested-With
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41F69D:4BD217:66C45DCF
PUT

https://github.com/repos/preferences

msedge.exe

Remote address:

20.26.156.215:443

Request

PUT /repos/preferences HTTP/2.0
host: github.com
content-length: 393
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: multipart/form-data; boundary=----WebKitFormBoundarynJb3oywtoZwozhdC
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
origin: https://github.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:43 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41F69D:4BD218:66C45DCF
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/resource.h

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/resource.h HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=7Q3kA0oL7bMVEjBjeMpkADaJIK%2FTphibKIU0Mhvpca0dWe9Zqp7UH6oYol89qR4L2O0neis1dNfsxGi1VGbZrPjRoyHBuItrg%2FqsyYPZtRRcIE1%2BUNbBDIkbdE76PZY44xsg2AspEA%2F%2F73nvGcI6dX%2FGAIiWYunjBaPtK2BHhP6PC%2F01w%2Bscs%2FjH6zdkw%2BSf31JdTU6L5bB8lDff3VVln0DhNBZMXLSeRgvTkKHDxb7EW4j3lCYdOxmZvQg2fzYV16FHCzcaZCDO01oAkEJZ6bjzvJCOwmyEHbwX8nzck%2BO3rKnQ--u%2FngZLxnrBjVYWMJ--FsWWzd%2B%2F%2BlCporKE%2Bi7fZQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:43 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"ce4012e392922e9b2c89a3aba46a234a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 427
x-github-request-id: C6C7:165A3E:41F69D:4BD216:66C45DCF
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"79a8a1c2a7cad0be8a23fd347e7f056e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2201
x-github-request-id: C6C7:165A3E:41F798:4BD310:66C45DCF
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 182
x-github-request-id: C6C7:165A3E:41F7BB:4BD347:66C45DD0
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/README.md

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/README.md HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"955e0fc93b3c6dd7b2078ef3ee928319"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 427
x-github-request-id: C6C7:165A3E:41F7BB:4BD346:66C45DD0
GET

https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D
if-none-match: W/"56f82253e4c2007a83eefd25c8ddc317"

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:48 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"deaef26b3556ee09741bfd16c72b83ee"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2233
x-github-request-id: C6C7:165A3E:41F9F9:4BD5BC:66C45DD0
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D
if-none-match: W/"297c30cacd5f963dbe8586216c8b8406"

Response

HTTP/2.0 404

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:48 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame
www-authenticate: Basic realm="GitHub"
cache-control: no-cache
set-cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
vary: Accept-Encoding, Accept, X-Requested-With
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41FA3A:4BD5F7:66C45DD4
PUT

https://github.com/repos/preferences

msedge.exe

Remote address:

20.26.156.215:443

Request

PUT /repos/preferences HTTP/2.0
host: github.com
content-length: 393
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: multipart/form-data; boundary=----WebKitFormBoundaryk0JMTRDAIIzCQaCN
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
origin: https://github.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:48 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"297c30cacd5f963dbe8586216c8b8406"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41FA3A:4BD5F6:66C45DD4
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=%2Bunny9HKv30R4DFyJ2xrrCKHEhTdrjx1KBeEgHMG0sXl76%2FiGBSurwxf2U5bdKU%2FmOf26BZor8aev0AKXQ4N28o5C004Mtc1aYF%2F8ztd5HXz0wjbvZbBGboX8P7u8wlrcyhXM0DjHwFiwWg3CVyQ0fEyBh5UqPHuqG1nGqBBIWfQuV2n4Gt1Z3yw2hWdWzRKvaktXMmtS4MtL5EiUMFrsVhFppmCnO1G5SCfLM2iVh08Shx7ySVrlzddPPMst9%2BcLvkmBbZs4%2B81v84Acc77ZIBVHEYSwWMhma0fyq9TiWDOIZOe--xmIl6MryAxRU%2Fffi--Zrp5j1vrJADCSmSVj77ZwQ%3D%3D
if-none-match: W/"488079cfe061b28acb63ba198b60cf00"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:49 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41FAB7:4BD68F:66C45DD4
GET

https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D
if-none-match: W/"054b738b9bbcade9d644791bfe99d41c"

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:49 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"077179dc91426caeefd985fbb52141c7"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1996
x-github-request-id: C6C7:165A3E:41FB31:4BD6F8:66C45DD5
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D
if-none-match: W/"a5feffcf4f4445361a76527690c47f05"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:50 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"488079cfe061b28acb63ba198b60cf00"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41FB53:4BD729:66C45DD6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/tree-commit-info/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/tree-commit-info/main/I_Am_a_potato HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D
if-none-match: W/"0100040923502f25cc7d1123f4f88aa8"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:50 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"0100040923502f25cc7d1123f4f88aa8"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41FB53:4BD728:66C45DD6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D
if-none-match: W/"488079cfe061b28acb63ba198b60cf00"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:11:50 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a5feffcf4f4445361a76527690c47f05"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: C6C7:165A3E:41FB53:4BD727:66C45DD5
GET

https://github.com/SysToad64/GDI-and-Bytebeats/tree/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/tree/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:05 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"327079d1be84e2215652835efe898096"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: C6C7:165A3E:42060D:4BE2B2:66C45DD6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/spoofed_commit_check/6b0fea84fe63dcee86b3ed62ccc26a4b6d3e7930

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/spoofed_commit_check/6b0fea84fe63dcee86b3ed62ccc26a4b6d3e7930 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 204

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:06 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: C6C7:165A3E:4206C4:4BE383:66C45DE6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/hovercards/citation/sidebar_partial?tree_name=main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/hovercards/citation/sidebar_partial?tree_name=main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:06 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C6C7:165A3E:4206C4:4BE384:66C45DE6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:06 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"75a11da44c802486bc6f65640aa48a73"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
content-length: 33
x-github-request-id: C6C7:165A3E:4206C4:4BE382:66C45DE5
GET

https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/latest-commit/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:06 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"8902c7088699d5c25402933819980cd9"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
content-length: 95
x-github-request-id: C6C7:165A3E:420702:4BE3D0:66C45DE6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/tree-commit-info/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/tree-commit-info/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:06 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"56a3b41b3adb53ca7fce5703eb10dacf"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 03b1019cc36291b3439024eb45a7ac28acab6334e968dd269d155c65d6c93e06
accept-ranges: bytes
content-length: 97
x-github-request-id: C6C7:165A3E:420702:4BE3CE:66C45DE6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/branch-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/branch-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:06 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a5feffcf4f4445361a76527690c47f05"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 448
x-github-request-id: C6C7:165A3E:420702:4BE3CC:66C45DE6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
github-verified-fetch: true
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:06 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"9c3b29d789e480c0827799cd05abcacd"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 356
x-github-request-id: C6C7:165A3E:420702:4BE3CD:66C45DE6
GET

https://github.com/SysToad64/GDI-and-Bytebeats/archive/refs/heads/main.zip

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /SysToad64/GDI-and-Bytebeats/archive/refs/heads/main.zip HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:12:13 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://codeload.github.com/SysToad64/GDI-and-Bytebeats/zip/refs/heads/main
cache-control: max-age=0, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C6C7:165A3E:420C08:4BE92F:66C45DE6
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.194.137

s3-w.us-east-1.amazonaws.com

IN A

3.5.20.33

s3-w.us-east-1.amazonaws.com

IN A

3.5.23.235

s3-w.us-east-1.amazonaws.com

IN A

52.216.60.193

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.30

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.27

s3-w.us-east-1.amazonaws.com

IN A

52.216.146.139

s3-w.us-east-1.amazonaws.com

IN A

52.217.112.73
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1008
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:10:26 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148626
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C076:29D7D8:1C0382F:1DD5137:66C45D81
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 688
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:10:33 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148633
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C076:29D7D8:1C03B7A:1DD54AF:66C45D82
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 424
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:10:41 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148641
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C076:29D7D8:1C03E6A:1DD57D2:66C45D89
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 54476
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:11:09 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148669
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C076:29D7D8:1C04BF2:1DD65F8:66C45D91
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 302
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:11:19 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148679
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C076:29D7D8:1C05136:1DD6B73:66C45DAD
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

173.222.211.40

a1851.dscg2.akamai.net

IN A

173.222.211.41
DNS

raw.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

raw.githubusercontent.com

IN A

Response

raw.githubusercontent.com

IN A

185.199.109.133

raw.githubusercontent.com

IN A

185.199.110.133

raw.githubusercontent.com

IN A

185.199.108.133

raw.githubusercontent.com

IN A

185.199.111.133
GET

https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/I_Am_a_potato.rc

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/I_Am_a_potato.rc HTTP/2.0
host: raw.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://github.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"a0f1f0a6f5b8fb36a65b923d463277179a1c30482b760c47aade8d4b50ba7b66"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 4809:12FC47:1066B6:145944:66C45D91
content-encoding: gzip
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:10:41 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600023-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1724145041.033429,VS0,VE158
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: ed25eb6ce45e0805de5e99d8c95f0dff5ecc0a9d
expires: Tue, 20 Aug 2024 09:15:41 GMT
source-age: 0
content-length: 487
OPTIONS

https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico

msedge.exe

Remote address:

185.199.109.133:443

Request

OPTIONS /SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico HTTP/2.0
host: raw.githubusercontent.com
accept: */*
access-control-request-method: GET
access-control-request-headers: turbo-visit
origin: https://github.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

cache-control: no-cache
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 0
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:;
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:10:53 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600023-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1724145053.242277,VS0,VE2
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 3cf8a9ec67c9e92525550e45b5c27c5b7c4bab4c
expires: Tue, 20 Aug 2024 09:15:53 GMT
vary: Authorization,Accept-Encoding
DNS

9.173.189.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

9.173.189.20.in-addr.arpa

IN PTR

Response
DNS

pulsar.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

pulsar.ebay.com.au

IN A

Response

pulsar.ebay.com.au

IN CNAME

pulsar.ebay.com

pulsar.ebay.com

IN CNAME

pulsar.ebay.com.edgekey.net

pulsar.ebay.com.edgekey.net

IN CNAME

e207850.a.akamaiedge.net

e207850.a.akamaiedge.net

IN A

104.117.183.40

e207850.a.akamaiedge.net

IN A

104.117.183.115

e207850.a.akamaiedge.net

IN A

104.117.183.24

e207850.a.akamaiedge.net

IN A

104.117.183.129

e207850.a.akamaiedge.net

IN A

104.117.183.42

e207850.a.akamaiedge.net

IN A

104.117.183.72

e207850.a.akamaiedge.net

IN A

104.117.183.120

e207850.a.akamaiedge.net

IN A

104.117.183.114

e207850.a.akamaiedge.net

IN A

104.117.183.130
DNS

pulsar.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

pulsar.ebay.com.au

IN A
DNS

pulsar.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

pulsar.ebay.com.au

IN A
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 3451
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:11:55 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148715
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E4C9:12789A:868F65:8E53D1:66C45DDB
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 271
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:12:06 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148726
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E4C9:12789A:8693FA:8E58AA:66C45DDB
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 201
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/SysToad64/GDI-and-Bytebeats/tree/main
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:12:11 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724148731
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E4C9:12789A:869640:8E5B04:66C45DE6
POST

https://pulsar.ebay.com.au/plsr/mpe/0/DFLT/9?

msedge.exe

Remote address:

104.117.183.40:443

Request

POST /plsr/mpe/0/DFLT/9? HTTP/2.0
host: pulsar.ebay.com.au
content-length: 426
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: ebay=%5Esbf%3D%23000000%5E
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NDczOTA3OCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMiUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMSU3RA==
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAlDGU2ORAQAA8/gIbxh63GKvZEzW5qDRSJobWCtXpevfEuxoLo/Mv5BKxpPOuIvTXaws/7VG17g3DFNUayPNzHxsHxn2FdtJoqHw7pVCetK+PGQRsrPdD1O/23ct3OanUKrzBhCaaFP2yoCNShY0E4iruPNZrTU10ox8k1sdeDVi2+4RGwcryVRQNzvyrsuv5MLM2WVRLFlTet2OEX+uPNNy1KINkQhxpejvFJGe9gW1QPjczOpFFXfzIw==~1
cookie: dp1=bbl/GB6a86c39f^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilkB9FQzRSMEFOAMoAIGqGw582ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGOnNxJlhgfvkqPrAiX+SgtBMhTkMfXu

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
rlogid: t6bkbbp%3F%3Ckuvgig%60u*tqnso(rbpv670%3D-1916f0ea350-0x208
x-envoy-upstream-service-time: 100
server: ebay-proxy-server
x-ebay-pop-id: SLBSLCAZ03
expires: Tue, 20 Aug 2024 09:11:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:11:56 GMT
content-length: 0
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: dp1=bbl/GB6a86c4db^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:11:56 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilkVtFQzRSMEFOAMoAIGqGxNs2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGTjOOWWLhKVynmu9PHD0wWbFaoi6Od3; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:11:56 GMT; HttpOnly; Secure
strict-transport-security: max-age=31536000
DNS

40.183.117.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

40.183.117.104.in-addr.arpa

IN PTR

Response

40.183.117.104.in-addr.arpa

IN PTR

a104-117-183-40deploystaticakamaitechnologiescom
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

172.217.20.194
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A
DNS

194.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.20.217.172.in-addr.arpa

IN PTR

Response

194.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f21e100net

194.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f194�H

194.20.217.172.in-addr.arpa

IN PTR

par10s50-in-f2�H
DNS

194.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.20.217.172.in-addr.arpa

IN PTR
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

github.githubassets.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.githubassets.com

IN A

Response

github.githubassets.com

IN A

185.199.108.154

github.githubassets.com

IN A

185.199.111.154

github.githubassets.com

IN A

185.199.109.154

github.githubassets.com

IN A

185.199.110.154
DNS

avatars.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

avatars.githubusercontent.com

IN A

Response

avatars.githubusercontent.com

IN A

185.199.108.133

avatars.githubusercontent.com

IN A

185.199.110.133

avatars.githubusercontent.com

IN A

185.199.111.133

avatars.githubusercontent.com

IN A

185.199.109.133
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

3.5.29.131

s3-w.us-east-1.amazonaws.com

IN A

54.231.193.49

s3-w.us-east-1.amazonaws.com

IN A

52.216.210.121

s3-w.us-east-1.amazonaws.com

IN A

54.231.167.49

s3-w.us-east-1.amazonaws.com

IN A

3.5.9.180

s3-w.us-east-1.amazonaws.com

IN A

16.182.103.249

s3-w.us-east-1.amazonaws.com

IN A

52.217.206.193

s3-w.us-east-1.amazonaws.com

IN A

3.5.29.163
DNS

codeload.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

codeload.github.com

IN A

Response

codeload.github.com

IN A

20.26.156.216
GET

https://www.bing.com/qbox?query=py&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=9a7825d2826d43e292fb52b682c532df&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /qbox?query=py&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=9a7825d2826d43e292fb52b682c532df&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 458
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e1078f74d4aa20c928034e107d6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-KW/9swS3+gxdF+EcJS+ZZzT/869bL0Mp6f3+DD/qxrI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:48 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:12:48 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3845C74FB6496D1104C0D3AEB7446CC4; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:12:48 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145168.350cbdf0
GET

https://www.bing.com/qbox?query=pyt&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=706b18c0ab0d45f997b302545ced2a1e&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /qbox?query=pyt&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=706b18c0ab0d45f997b302545ced2a1e&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 465
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e104e70470aa70d0b926b479aec
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-7hso3SDKAc23u5w90XsU3vINYVQYNXuOUefa8rgPMdw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:48 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:12:48 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=25185EC2DD8663431C044A23DC1A620D; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:12:48 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145168.350cbea8
GET

https://www.bing.com/qbox?query=pytn&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=c9a495fb9b5f446fb174c55779c715a7&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /qbox?query=pytn&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=c9a495fb9b5f446fb174c55779c715a7&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 202
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e1109ff4b7990c0b0ca06f6186c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-r9dinBp0uzB8VuVoUmO/tfjtew7nsiUiiJfKNxL7kBA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:49 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:12:49 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=063504B26F5668963E6F10536E916992; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:12:49 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145169.350cc7d1
GET

https://www.bing.com/qbox?query=pyt&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=e679bfc81cab46819b853b23edf020dd&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /qbox?query=pyt&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=e679bfc81cab46819b853b23edf020dd&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 465
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e132a6d4e55a8914690ac7bcb4d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-2WnQNWZ6yD7ib4DmKpMH3Xbf7/f1QN+nAAJkksHL/3c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:51 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:12:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=13F58E3B1E5D63EA2B779ADA1F5062BD; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:12:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145171.350ce21e
GET

https://www.bing.com/qbox?query=pyto&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=e87b69c8aa3147509816ed86f48cd9c7&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /qbox?query=pyto&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=e87b69c8aa3147509816ed86f48cd9c7&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-length: 340
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e147d2249cb8122d2f487621cf2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-MtDd6FZJvIBtHFvMsTG8acNSGzAmAVoYB5H+pDJ29JY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:52 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:12:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2399FD1F0D9A6D6C0F45E9FE0C066C9F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:12:52 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145172.350ce86a
GET

https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQ3oFlX9UEtFyRAQAApy8MbxjyGGUVpftd1FK2UP89DA2DTNKy/nIKE4ZiSdC1MfUbIqIoKARAdX0nJXDli0gEMDLea7hW+f4i4gaE7TPdxK4uaEhrstepsUkfztInrV7sjJZTlCZtgvGOovknSrWYOMekF0vvaZTc5ATnFlftTNr8B4Kd/7GqF7C5XaN1wSeL4foBhKxL68eax2Sv6/KqsOPK85v7xGWIOHc9ce3SRDq4IkyPCYmxsm7rxg==~1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:11:53 GMT
vary: Accept-Encoding
x-eventid: 66c45e1534ad48e5b20d9f2f22920811
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-Ry2V/pu/SjU3UdKNg7PeZNEF1/5nlLTottu3GaxQfJ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:12:53 GMT
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cf3cf
set-cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:29 GMT; Max-Age=6816; Secure
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:18,%22BC%22:265,%22SE%22:-1,%22TC%22:-1,%22H%22:336,%22BP%22:337,%22CT%22:338,%22IL%22:1},%22ad%22:[43,164,1263,609,1263,2075,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:18,%22BC%22:265,%22SE%22:-1,%22TC%22:-1,%22H%22:336,%22BP%22:337,%22CT%22:338,%22IL%22:1},%22ad%22:[43,164,1263,609,1263,2075,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfa2f
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3045&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfa37
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145172432%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145172432%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A506%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145172432%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145172432%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A506%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfaea
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfaed
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfba9
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%224%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%224%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfba8
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfc22
GET

https://www.bing.com/images/sbi?mmasync=1&ig=7FEDE16B20BF40EBAE3667290AAD2E3A&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /images/sbi?mmasync=1&ig=7FEDE16B20BF40EBAE3667290AAD2E3A&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfc37
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172442%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172442%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172444%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A740%2C%22time%22%3A747%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145172587%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172442%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172442%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172444%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A740%2C%22time%22%3A747%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145172587%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfae9
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145172588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145172588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfc35
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145172588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145172588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 17498
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e15efcb443c9931ff9681dd9f23
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-tacL38Seht/VJwvDieeVvmq4HdkKYgsM81GOgwweR9g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfbde
POST

https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=7FEDE16B20BF40EBAE3667290AAD2E3A

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=7FEDE16B20BF40EBAE3667290AAD2E3A HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 837
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45e156cbc401f85423ca95363495b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-oLtq31k6zBIfTrnFPOgiFPGeSwCXXjeo8HSBnY/KlDs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45e156cbc401f85423ca95363495b|AFD:66c45e156cbc401f85423ca95363495b|2024-08-20T09:12:53.826Z
date: Tue, 20 Aug 2024 09:12:53 GMT
set-cookie: _C_ETH=1; expires=Mon, 19 Aug 2024 09:12:53 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfc69
POST

https://www.bing.com/rewardsapp/reportActivity?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&IID=SERP.5065&q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /rewardsapp/reportActivity?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&IID=SERP.5065&q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 153
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-length: 1024
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45e15aa2b4b05abd9b6f6fe99bfba
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-aVShu1PHdPhU85op2BL2T/1WeFtSxxI37OKrHA+0k/k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45e15aa2b4b05abd9b6f6fe99bfba|AFD:66c45e15aa2b4b05abd9b6f6fe99bfba|2024-08-20T09:12:53.837Z
date: Tue, 20 Aug 2024 09:12:53 GMT
set-cookie: _C_ETH=1; expires=Mon, 19 Aug 2024 09:12:53 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Wed, 20-Aug-2025 09:12:53 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-08-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfc78
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?BF=MSJ0&IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfd3c
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?BF=MSJ1&IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfd4e
GET

https://www.bing.com/supercaptionsassets?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&IID=SERP.5689

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /supercaptionsassets?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&IID=SERP.5689 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 15358
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e15d0e44a1794a2b4d447559b6b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-vc0jKP3iJ1VYh73YZjIn3jV2bpf0153sTFKo8/ORInM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfd4f
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfdac
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfded
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe34
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45e1534ad48e5b20d9f2f22920811%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145172604%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45e1534ad48e5b20d9f2f22920811%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145172604%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172623%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172751%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45e1534ad48e5b20d9f2f22920811%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145172604%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45e1534ad48e5b20d9f2f22920811%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145172604%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172623%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172751%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe53
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172751%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172751%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe52
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145172752%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145172752%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe67
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe6a
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe69
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe66
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe68
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe6d
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45e169104480b958c50ea9353d21e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-ooCVqIfID4JPabC8dHDrCLfQq5eyTPUYpilKJ8NBpq4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: EBDB207168A345B9AC2D3487CC784DD5 Ref B: LON212050703025 Ref C: 2024-08-20T09:12:53Z
date: Tue, 20 Aug 2024 09:12:54 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:12:54 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254; domain=.bing.com; expires=Sun, 14-Sep-2025 09:12:54 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe6c
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.PPT&DATA={%22S%22:371,%22E%22:682,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.PPT&DATA={%22S%22:371,%22E%22:682,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe6b
GET

https://www.bing.com/auth/getToken

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /auth/getToken HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145174.350d0069
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22613%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22923%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145172786%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145172807%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172917%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22613%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22923%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145172786%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145172807%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172917%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254

Response

HTTP/2.0 200

cache-control: private
content-length: 902
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45e165a2f44be85ec99acaf31b157
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-dKG4PPOGEpAtQOmgRRNPRFdsS8pY9OnqUvdCiyFRRwQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: DFB8B02745C6405888E123ECE830FB09 Ref B: VIEEDGE1920 Ref C: 2024-08-20T09:12:53Z
date: Tue, 20 Aug 2024 09:12:54 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:12:54 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145173.350cfe6e
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254

Response

HTTP/2.0 200

content-length: 75
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45e173f76425a8aa68651be71578a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-N7j7IGLSCs3iYkl/OAS0OLukSo4KZ5xi9aWKES4hkYE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145175.350d1400
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145173047%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145173047%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173841%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173885%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173940%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173952%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145174041%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145174135%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145174845%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145173047%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145173047%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173841%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173885%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173940%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173952%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145174041%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145174135%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145174845%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145176.350d1826
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=pyto&cp=4&csr=1&zis=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=pyto&cp=4&csr=1&zis=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563

Response

HTTP/2.0 200

content-length: 849
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e19eb8e47098c8b5254cdcbc54f
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-eYcmSPfuESScwqNPO4HWTNxmkus+9H3zMTjkL8/AOEU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:57 GMT
set-cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145177.350d23c9
GET

https://www.bing.com/th?id=OSK.822f3b02069ea52e27e0e23959460f08&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OSK.822f3b02069ea52e27e0e23959460f08&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2876
date: Tue, 20 Aug 2024 09:12:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145177.350d2588
GET

https://www.bing.com/th?id=OSK.fb76c7b8d00d3afe54466d81b9510d16&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OSK.fb76c7b8d00d3afe54466d81b9510d16&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2462
date: Tue, 20 Aug 2024 09:12:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145177.350d2589
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145177.350d29d8
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 18518
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145178.350d2e38
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145175713%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%2C%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1724145175768%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145175860%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%22%2C%22AsResponseLength%22%3A%22849%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145175984%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%2Cig%3A929E527FF8E14D65954AB8ECFF520D30%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145176005%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145175713%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%2C%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1724145175768%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145175860%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%22%2C%22AsResponseLength%22%3A%22849%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145175984%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%2Cig%3A929E527FF8E14D65954AB8ECFF520D30%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145176005%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145178.350d2fd0
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145177591%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A5753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145177593%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145177591%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A5753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145177593%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:12:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145178.350d37e7
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=pyt&cp=3&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=pyt&cp=3&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 748
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e1a49894a2682555ef56a451390
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-ZVC8Cd5HAmIIN/myt2oSh3WaSmc+VDY7RGOiLT3LI9s='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:58 GMT
set-cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145178.350d3854
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=py&cp=2&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=py&cp=2&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1012
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e1b8ee749ceb4e493687ab8d7ad
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-kRF8WbF44byTcfu4TjafnK27e0F5/mZmDqNCl8Nyt7E='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:59 GMT
set-cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145179.350d3a53
GET

https://www.bing.com/th?id=OSK.44c0ebcde02ad21806d5c6cb3b1e340b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OSK.44c0ebcde02ad21806d5c6cb3b1e340b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3404
date: Tue, 20 Aug 2024 09:12:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145179.350d3bc3
GET

https://www.bing.com/th?id=OSK.FhPSBNrsr4kGuxXvSo7wnSIZ6z6yAZZ4hGj7UY8aRq8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OSK.FhPSBNrsr4kGuxXvSo7wnSIZ6z6yAZZ4hGj7UY8aRq8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8861
date: Tue, 20 Aug 2024 09:12:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145179.350d3bb8
GET

https://www.bing.com/th?id=OSK.5e68780d6e363f4bfbb9e53af22cd37f&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OSK.5e68780d6e363f4bfbb9e53af22cd37f&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8585
date: Tue, 20 Aug 2024 09:12:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145179.350d3bc4
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=p&cp=1&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=p&cp=1&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1026
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e1b48ab4ef6bab349c0f1aee9a1
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-GyDpHUHuyR7xI7kzexmjo8A8Gibsg6BvbmCtaPx1G3M='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:12:59 GMT
set-cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145179.350d3ca3
GET

https://www.bing.com/th?id=OSK.f96c3170bf3516e1d0c5b10266c9d7b8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OSK.f96c3170bf3516e1d0c5b10266c9d7b8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3428
date: Tue, 20 Aug 2024 09:12:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145179.350d3de5
GET

https://www.bing.com/th?id=OSK.8UbglgdMZ9k0Zpei0FYEWzXz6l3SC6ErGnGQWYpjLdE&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OSK.8UbglgdMZ9k0Zpei0FYEWzXz6l3SC6ErGnGQWYpjLdE&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3191
date: Tue, 20 Aug 2024 09:12:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145179.350d3df0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2485
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145180.350d4664
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145177629%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22748%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145177750%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%2Cig%3AEC369A8C78964C4E96646E4DB8DD91C3%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145177751%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145177793%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145177842%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22AsResponseLength%22%3A%221012%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145177966%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%2Cig%3A5EE0FA413ABD4940BA9E5BE3FF33D2FB%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145177967%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145178031%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145178052%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22AsResponseLength%22%3A%221026%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145178192%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%2Cig%3A43C9B13208F44BE2959AC7A22C8E2214%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145178192%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145177629%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22748%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145177750%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%2Cig%3AEC369A8C78964C4E96646E4DB8DD91C3%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145177751%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145177793%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145177842%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22AsResponseLength%22%3A%221012%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145177966%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%2Cig%3A5EE0FA413ABD4940BA9E5BE3FF33D2FB%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145177967%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145178031%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145178052%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22AsResponseLength%22%3A%221026%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145178192%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%2Cig%3A43C9B13208F44BE2959AC7A22C8E2214%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145178192%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145180.350d4d4e
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1133
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145181.350d5932
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145181.350d5933
GET

https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0&sid=044E27407A3C6EFA0F8B33A17B066F22&format=snrjson&jsoncbid=0

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0&sid=044E27407A3C6EFA0F8B33A17B066F22&format=snrjson&jsoncbid=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145181.350d5937
GET

https://www.bing.com/fd/ls/GLinkPing.aspx?IG=43C9B13208F44BE2959AC7A22C8E2214&ID=autosuggest,5004.1&PR={%22i%22:%22m%22,%22et%22:2409}

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/GLinkPing.aspx?IG=43C9B13208F44BE2959AC7A22C8E2214&ID=autosuggest,5004.1&PR={%22i%22:%22m%22,%22et%22:2409} HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45e1d56324728aa9fcc7fae4a0d2e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-3o7oLo5pDJwValS8X9Z5vGezb40kG7GZxXixvcIQLHg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 7EA48E9092C44AC681074FAF6B20CCB1 Ref B: VIEEDGE2611 Ref C: 2024-08-20T09:13:01Z
content-length: 0
date: Tue, 20 Aug 2024 09:13:01 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:13:01 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145181.350d5935
GET

https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apython%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145180601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apython%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145180601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:12:01 GMT
vary: Accept-Encoding
x-eventid: 66c45e1d16394888b33cf26a9158508d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-L8hVKDTAUbUWEIyI2gRYpeopvqDQ3hGbJk5Hdagsv1I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:13:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145181.350d5934
set-cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:29 GMT; Max-Age=6808; Secure
GET

https://www.bing.com/rp/6K69T54J8GYMst0wwfWrSFOSqoI.svg

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /rp/6K69T54J8GYMst0wwfWrSFOSqoI.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1

Response

HTTP/2.0 200

last-modified: Wed, 17 Aug 2022 06:17:32 GMT
etag: 0x8DA80182B781118
cache-control: public, no-transform, max-age=431852
expires: Fri, 23 Aug 2024 16:53:24 GMT
akamai-grn: 0.05d01702.1724000152.7bfa02e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 540
content-type: image/svg+xml
content-md5: h+hCcIQPakC5EOCzsnUCgA==
x-ms-request-id: 027b82a3-401e-005f-7b1e-d3b090000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d60ef
GET

https://www.bing.com/rp/a71zIttPDq6PMxmf_iKDVzECFPw.svg

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /rp/a71zIttPDq6PMxmf_iKDVzECFPw.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1

Response

HTTP/2.0 200

content-length: 192
content-type: image/svg+xml
content-md5: pAwAuXldChZKePNcdgJr9g==
last-modified: Tue, 28 Nov 2023 14:06:41 GMT
etag: 0x8DBF01B3F456465
x-ms-request-id: 572869bc-c01e-0051-4901-f29920000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=431970
expires: Sat, 24 Aug 2024 06:31:41 GMT
akamai-grn: 0.26257e68.1724049130.1808f6d9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d60ee
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:437,%22SE%22:-1,%22TC%22:-1,%22H%22:537,%22BP%22:570,%22CT%22:570,%22IL%22:21},%22ad%22:[43,164,1263,609,1263,3449,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:437,%22SE%22:-1,%22TC%22:-1,%22H%22:537,%22BP%22:570,%22CT%22:570,%22IL%22:21},%22ad%22:[43,164,1263,609,1263,3449,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d619f
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d61d1
GET

https://www.bing.com/news/NewsAnswerV2CarouselAjax?q=Python&eventans=1&eventland=0&eventrel=1&width=608&nccl=Lite&IG=BA1224B9C6314D6C87A4FEDBE74E9385&IID=NEWS.401&SFX=0&disablecarousel=1&OMWQ=0

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /news/NewsAnswerV2CarouselAjax?q=Python&eventans=1&eventland=0&eventrel=1&width=608&nccl=Lite&IG=BA1224B9C6314D6C87A4FEDBE74E9385&IID=NEWS.401&SFX=0&disablecarousel=1&OMWQ=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6295
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181359%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145181359%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145181369%2C%22Name%22%3A9363%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181369%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181359%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145181359%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145181369%2C%22Name%22%3A9363%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181369%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d62a0
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d62a1
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6354
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%226%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%226%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 2404
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e1eed64428887ee49faa834a2bc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-qwxdV0CqZYuBad3PEVgQKp3ncOp0T3SwPx7Ysybw3n4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6210
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6365
GET

https://www.bing.com/images/sbi?mmasync=1&ig=BA1224B9C6314D6C87A4FEDBE74E9385&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /images/sbi?mmasync=1&ig=BA1224B9C6314D6C87A4FEDBE74E9385&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 17498
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45e1e86ce463588c7e1be2b4a9e9d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-KFtlYG7glE2a2Y1MmHE1yWm72L1LG7bDHkVyqUX6iNc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6385
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181548%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Time%22%3A9704%2C%22time%22%3A9707%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145181548%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181548%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Time%22%3A9704%2C%22time%22%3A9707%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145181548%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d63bc
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A9709%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145181549%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A9709%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145181549%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d63be
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A9709%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145181549%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A9709%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145181549%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d63bd
POST

https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=BA1224B9C6314D6C87A4FEDBE74E9385

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=BA1224B9C6314D6C87A4FEDBE74E9385 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 837
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45e1eda824514b2f4f22720d38d2d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-sM0aIZ2QzxHp7UXEmitH4EnDk5ifdYMOJA7sxpMOLlo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45e1eda824514b2f4f22720d38d2d|AFD:66c45e1eda824514b2f4f22720d38d2d|2024-08-20T09:13:02.791Z
date: Tue, 20 Aug 2024 09:13:02 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d63d3
POST

https://www.bing.com/rewardsapp/reportActivity?IG=BA1224B9C6314D6C87A4FEDBE74E9385&IID=SERP.5065&q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /rewardsapp/reportActivity?IG=BA1224B9C6314D6C87A4FEDBE74E9385&IID=SERP.5065&q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0 HTTP/2.0
host: www.bing.com
content-length: 168
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2460
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6496
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?BF=MSJ0&IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}&ndcParam=QWthbWFp
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1049
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6497
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?BF=MSJ1&IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 750
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6499
GET

https://www.bing.com/th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2598
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64ad
GET

https://www.bing.com/th?id=OJ.kOKMdnoIEscfWg&pid=news&w=43&h=12&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OJ.kOKMdnoIEscfWg&pid=news&w=43&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1012
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45e1ec86f4d46bb4aed395d8855ce
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-QvNCFmYr2KK2v0Y6uhUTI/VeYPKu/0GvvhFYakH/Xcw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45e1ec86f4d46bb4aed395d8855ce|AFD:66c45e1ec86f4d46bb4aed395d8855ce|2024-08-20T09:13:02.792Z
date: Tue, 20 Aug 2024 09:13:02 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Wed, 20-Aug-2025 09:13:02 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-08-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d63e3
GET

https://www.bing.com/th?id=OVFT.do2qKbu37apMKajyglX9zy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVFT.do2qKbu37apMKajyglX9zy&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3180
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6498
GET

https://www.bing.com/th?id=ODF.OTnMxsbz4F25ZN9IEbv1Ig&pid=news&w=16&h=16&c=14&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=ODF.OTnMxsbz4F25ZN9IEbv1Ig&pid=news&w=16&h=16&c=14&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2247
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a2
GET

https://www.bing.com/th?id=OVFT.q5fUlMRexwYVjcmIHh07lC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVFT.q5fUlMRexwYVjcmIHh07lC&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4861
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a5
GET

https://www.bing.com/th?id=OJ.kTkc0KCzwa1WiQ&pid=news&w=68&h=12&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OJ.kTkc0KCzwa1WiQ&pid=news&w=68&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 639
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a6
GET

https://www.bing.com/th?id=OVF.bWKCl%2FHIn5c38TR0%2F%2BxZXw&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVF.bWKCl%2FHIn5c38TR0%2F%2BxZXw&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 945
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a8
GET

https://www.bing.com/th?id=ODF.pPTO_qfDGMw5U2MDJ6xzpw&pid=news&w=16&h=16&c=14&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=ODF.pPTO_qfDGMw5U2MDJ6xzpw&pid=news&w=16&h=16&c=14&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1821
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64ab
GET

https://www.bing.com/th?id=OVFT.kherjYEI7ug0ENtHUm2qiC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVFT.kherjYEI7ug0ENtHUm2qiC&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3731
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64ac
GET

https://www.bing.com/th?id=ODF.PnZjAzMJ6tNZQLJWq4mBPA&pid=news&w=16&h=16&c=14&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=ODF.PnZjAzMJ6tNZQLJWq4mBPA&pid=news&w=16&h=16&c=14&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3815
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64aa
GET

https://www.bing.com/th?id=OVFT.I48oTal63iwX-Ewj5KRLDC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVFT.I48oTal63iwX-Ewj5KRLDC&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3764
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d649a
GET

https://www.bing.com/th?id=OJ.UvMMFWBgPBDZYg&pid=news&w=66&h=12&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OJ.UvMMFWBgPBDZYg&pid=news&w=66&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3573
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a7
GET

https://www.bing.com/th?id=OVF.zeVnUkpde9%2FXWiBHn0REUQ&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVF.zeVnUkpde9%2FXWiBHn0REUQ&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6487
GET

https://www.bing.com/th?id=OVFT.ekbAtZ1Qfktc0547SDYy1C&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVFT.ekbAtZ1Qfktc0547SDYy1C&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d6495
GET

https://www.bing.com/th?id=OJ.bjzAslfCD2NPLw&pid=news&w=100&h=12&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OJ.bjzAslfCD2NPLw&pid=news&w=100&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3679
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a9
GET

https://www.bing.com/th?id=OVFT.e0_Id3C3jjgr6uqUIaH6rS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OVFT.e0_Id3C3jjgr6uqUIaH6rS&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2621
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a3
GET

https://www.bing.com/th?id=OJ.90xplnVYmlI0WA&pid=news&w=69&h=12&rs=2

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /th?id=OJ.90xplnVYmlI0WA&pid=news&w=69&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 976
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d64a4
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145182.350d66ba
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 274
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d66c4
GET

https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6775
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45e1d16394888b33cf26a9158508d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145181557%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45e1d16394888b33cf26a9158508d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145181557%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181576%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145181631%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145181631%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45e1d16394888b33cf26a9158508d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145181557%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45e1d16394888b33cf26a9158508d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145181557%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181576%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145181631%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145181631%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6777
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6779
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6787
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6789
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22true%22%2C%22SuppressionReason%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181861%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22true%22%2C%22SuppressionReason%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181861%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d67e4
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=undefined

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d67e5
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145181882%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145181882%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d67f8
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 48053
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45e1f390147e6b340f9288a024644
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-bkH/LQJWSHBBrDSmW0yeCh521Bh3/aahovSEm0SssMM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45e1f390147e6b340f9288a024644|AFD:66c45e1f390147e6b340f9288a024644|2024-08-20T09:13:03.087Z
date: Tue, 20 Aug 2024 09:13:03 GMT
set-cookie: _C_ETH=1; expires=Mon, 19 Aug 2024 09:13:03 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d676b
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45e1f9e864a54a062a4517e948fa2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-C5GurXl9hMtUoSDdStTwm2LSNBAgDUCrrqrrGBsDcIM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 6E5D9280D63745C78A0206860C415913 Ref B: LON212050706051 Ref C: 2024-08-20T09:13:03Z
date: Tue, 20 Aug 2024 09:13:03 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:13:03 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303; domain=.bing.com; expires=Sun, 14-Sep-2025 09:13:03 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d67e3
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.PPT&DATA={%22S%22:616,%22E%22:1127,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.PPT&DATA={%22S%22:616,%22E%22:1127,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d67e6
GET

https://www.bing.com/auth/getToken

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /auth/getToken HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6933
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145181910%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22613%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145181911%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22923%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145181911%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145182014%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145181910%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22613%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145181911%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22923%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145181911%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145182014%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

cache-control: private
content-length: 902
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45e1fe9b24709b45815031d8d685b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-xEFoD8NWj9WZi/Pqd+uNWdMAo979iRu9PTCph6Oi6l8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 72C3997998124027994042BF0141E2F8 Ref B: VIEEDGE2008 Ref C: 2024-08-20T09:13:03Z
date: Tue, 20 Aug 2024 09:13:03 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:13:03 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d681e
GET

https://www.bing.com/rp/fLTkaxBENjCfWBJcoPzD_iL_Jdk.png

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /rp/fLTkaxBENjCfWBJcoPzD_iL_Jdk.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

last-modified: Mon, 27 Mar 2023 19:12:05 GMT
etag: 0x8DB2EF7272D2775
cache-control: public, no-transform, max-age=429310
expires: Sun, 25 Aug 2024 03:40:46 GMT
akamai-grn: 0.b6257e68.1724127936.15e592c0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 149431
content-type: image/png
content-md5: mKoBt/6IeAGKPW12W813sA==
x-ms-request-id: 8580a3ab-001e-00aa-51b2-eb24ba000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6b21
GET

https://www.bing.com/rp/f486BDVfMqELn3q3UfwjgS6uu4k.png

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /rp/f486BDVfMqELn3q3UfwjgS6uu4k.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 159
content-type: image/png
content-md5: 3LbWxA3PgMI43VsDbT/UGQ==
last-modified: Wed, 17 Aug 2022 06:25:59 GMT
etag: 0x8DA801959925A1C
x-ms-request-id: a63cc6a9-101e-0089-0f04-f0be79000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=431949
expires: Wed, 21 Aug 2024 17:51:10 GMT
akamai-grn: 0.7c257e68.1723830721.bd9d2b7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145183.350d6b32
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145184.350d742f
GET

https://www.bing.com/fd/ls/l?IG=1363ADC093C14FE68F8576F97431E154&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:6,%22SE%22:-1,%22TC%22:-1,%22H%22:195,%22BP%22:1009,%22CT%22:1010,%22IL%22:0},%22ad%22:[-1,-1,320,374,320,374,0],%22net%22:%22undefined%22}&P=rewards&DA=DUBE01

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=1363ADC093C14FE68F8576F97431E154&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:6,%22SE%22:-1,%22TC%22:-1,%22H%22:195,%22BP%22:1009,%22CT%22:1010,%22IL%22:0},%22ad%22:[-1,-1,320,374,320,374,0],%22net%22:%22undefined%22}&P=rewards&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145184.350d7431
POST

https://www.bing.com/web/xls.aspx

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /web/xls.aspx HTTP/2.0
host: www.bing.com
content-length: 4651
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
x-msedge-externalexp: null
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
x-msedge-externalexptype: JointCoord
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145184.350d74c3
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181372%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181372%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181375%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%5D

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181372%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181372%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181375%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145184.350d78b6
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=BA1224B9C6314D6C87A4FEDBE74E9385&ID=SERP,5532.5&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D1acd04dd739bb744JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUzMg%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dpython%26u%3Da1aHR0cHM6Ly93d3cucHl0aG9uLm9yZy9kb3dubG9hZHMv%26ntb%3D1

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=BA1224B9C6314D6C87A4FEDBE74E9385&ID=SERP,5532.5&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D1acd04dd739bb744JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUzMg%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dpython%26u%3Da1aHR0cHM6Ly93d3cucHl0aG9uLm9yZy9kb3dubG9hZHMv%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45e209f0b40e2931d347d0cc1a591
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-SgVP3sg6iBO+J9lHKEmoQnNSxzzti9TajSFuY7g7cTQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B17FE0125C6243B29326747642F60CAE Ref B: VIEEDGE1012 Ref C: 2024-08-20T09:13:04Z
content-length: 0
date: Tue, 20 Aug 2024 09:13:04 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:13:04 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145184.350d7d05
GET

https://www.bing.com/ck/a?!&&p=1acd04dd739bb744JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUzMg&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=python&u=a1aHR0cHM6Ly93d3cucHl0aG9uLm9yZy9kb3dubG9hZHMv&ntb=1

msedge.exe

Remote address:

104.126.37.153:443

Request

GET /ck/a?!&&p=1acd04dd739bb744JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUzMg&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=python&u=a1aHR0cHM6Ly93d3cucHl0aG9uLm9yZy9kb3dubG9hZHMv&ntb=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1189
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D2D32911E78641EE8D79F8913FF6ED2A Ref B: LON212050701027 Ref C: 2024-08-20T09:13:04Z
date: Tue, 20 Aug 2024 09:13:05 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145184.350d7e02
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

104.126.37.153:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 4614
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:05 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95257e68.1724145185.350d7e3f
DNS

153.37.126.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

153.37.126.104.in-addr.arpa

IN PTR

Response

153.37.126.104.in-addr.arpa

IN PTR

a104-126-37-153deploystaticakamaitechnologiescom
DNS

153.37.126.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

153.37.126.104.in-addr.arpa

IN PTR

Response

153.37.126.104.in-addr.arpa

IN PTR

a104-126-37-153deploystaticakamaitechnologiescom
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.235

e86303.dscx.akamaiedge.net

IN A

95.101.129.202

e86303.dscx.akamaiedge.net

IN A

95.101.129.194

e86303.dscx.akamaiedge.net

IN A

95.101.129.146

e86303.dscx.akamaiedge.net

IN A

95.101.129.233

e86303.dscx.akamaiedge.net

IN A

95.101.129.234

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.208
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.146

e86303.dscx.akamaiedge.net

IN A

95.101.129.232

e86303.dscx.akamaiedge.net

IN A

95.101.129.211

e86303.dscx.akamaiedge.net

IN A

95.101.129.234

e86303.dscx.akamaiedge.net

IN A

95.101.129.225

e86303.dscx.akamaiedge.net

IN A

95.101.129.226

e86303.dscx.akamaiedge.net

IN A

95.101.129.233

e86303.dscx.akamaiedge.net

IN A

95.101.129.235

e86303.dscx.akamaiedge.net

IN A

95.101.129.194
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.208

e86303.dscx.akamaiedge.net

IN A

95.101.129.146

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.211

e86303.dscx.akamaiedge.net

IN A

95.101.129.194

e86303.dscx.akamaiedge.net

IN A

95.101.129.202

e86303.dscx.akamaiedge.net

IN A

95.101.129.218

e86303.dscx.akamaiedge.net

IN A

95.101.129.235

e86303.dscx.akamaiedge.net

IN A

95.101.129.210
GET

https://r.bing.com/rp/I0oqL6KlxQg6fTOUf0zgtDXii0M.svg

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/I0oqL6KlxQg6fTOUf0zgtDXii0M.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 5382
content-type: image/svg+xml
content-md5: KcctZniCWyI99tJ+dvN3kw==
last-modified: Wed, 06 Sep 2023 14:44:34 GMT
etag: 0x8DBAEE7C963B6CA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 13594570-601e-00ac-4f77-ba1705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=381763
expires: Sat, 24 Aug 2024 19:15:45 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e481655f.1724145182.1e340c7e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1130
content-type: image/svg+xml
content-md5: FNy6o5g3lRToAoQvWVNRRg==
last-modified: Wed, 03 Jan 2024 12:29:57 GMT
etag: 0x8DC0C57B287DF4C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7cb7bf8e-a01e-0012-6154-429b81000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=375509
expires: Sat, 24 Aug 2024 17:31:31 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e481655f.1724145182.1e340c7f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 304
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PX2MCYqpUzo58j8uZ/WgUQ==
last-modified: Wed, 27 Sep 2023 15:07:12 GMT
etag: 0x8DBBF6B6DACD12A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5a66be06-a01e-008c-7799-ef6ca2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=71279
expires: Wed, 21 Aug 2024 05:00:52 GMT
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145173.2cb76450
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8tH293BphaRNSPJ2rM8AoZ1AZcU.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/8tH293BphaRNSPJ2rM8AoZ1AZcU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 04 Aug 2022 14:17:09 GMT
etag: 0x8DA762404A64FDE
akamai-grn: 0.08071002.1723786975.27f50be6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: bKuH196JDXfsP0BphodSgQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 60c805af-a01e-003d-27ef-04964a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 301
cache-control: public, no-transform, max-age=270802
expires: Fri, 23 Aug 2024 12:26:15 GMT
date: Tue, 20 Aug 2024 09:12:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145173.2cb76460
timing-allow-origin: *
GET

https://r.bing.com/rp/FuMDgHCeJzgAWeLCBq2RRKwyGUA.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/FuMDgHCeJzgAWeLCBq2RRKwyGUA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 310
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4eyhAm58agHika1Pk+mqpQ==
last-modified: Wed, 17 Aug 2022 05:34:04 GMT
etag: 0x8DA801218CD5153
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 355e7749-901e-0011-80d5-f29e18000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=427016
expires: Sun, 25 Aug 2024 07:49:49 GMT
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145173.2cb76461
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ux1mL_BeI5W_NEKqkFEN1fLUu0o.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/ux1mL_BeI5W_NEKqkFEN1fLUu0o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 792
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
last-modified: Wed, 17 Aug 2022 05:59:41 GMT
etag: 0x8DA8015ACF2156D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f713a88e-501e-00f2-7972-031818000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=339212
expires: Sat, 24 Aug 2024 07:26:25 GMT
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145173.2cb76463
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: 7Zu2tGJpZ69JX58tozVjPQ==
last-modified: Mon, 04 Mar 2024 07:16:43 GMT
etag: 0x8DC3C1B0BC4D6C2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a5082d6e-201e-0066-8084-d64b8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1433
cache-control: public, no-transform, max-age=249512
expires: Fri, 23 Aug 2024 06:31:25 GMT
date: Tue, 20 Aug 2024 09:12:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145173.2cb76464
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: qCzlUsozx9VZvKjXj/sIlQ==
last-modified: Wed, 06 Mar 2024 21:52:48 GMT
etag: 0x8DC3E27C38D3009
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e02f99ce-301e-0045-6963-e9d14f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8527
cache-control: public, no-transform, max-age=166988
expires: Thu, 22 Aug 2024 07:36:01 GMT
date: Tue, 20 Aug 2024 09:12:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145173.2cb76465
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/bGGMgLQKrBqF0e1Gl4gVARrbZSE.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/bGGMgLQKrBqF0e1Gl4gVARrbZSE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 297
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: aMcgzJXX0Ee99dBf6DeIvg==
last-modified: Fri, 19 Apr 2024 07:38:23 GMT
etag: 0x8DC6043B12BA9E5
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: caaacab7-a01e-0049-48b4-9507c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=80277
expires: Wed, 21 Aug 2024 07:30:50 GMT
date: Tue, 20 Aug 2024 09:12:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145173.2cb76462
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cD-VOAGiLxuv3XXo37JO9cObcPg.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/cD-VOAGiLxuv3XXo37JO9cObcPg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: 2l02yysuup9QfnZinhglJw==
last-modified: Wed, 22 Feb 2023 10:10:04 GMT
etag: 0x8DB14BCF7B73559
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 779b3ba8-401e-000c-0f5a-7fd222000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 879
cache-control: public, no-transform, max-age=234425
expires: Fri, 23 Aug 2024 02:20:07 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145182.2cb815ab
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/X1Cjkakv1epBOGfkIjYblQJvweU.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/X1Cjkakv1epBOGfkIjYblQJvweU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: tgYuBbz2yD/3NNaA9JDx3A==
last-modified: Tue, 14 Mar 2023 14:38:34 GMT
etag: 0x8DB2499CA550BED
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4ff90373-601e-0077-1d0a-c6d138000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 698
cache-control: public, no-transform, max-age=250228
expires: Fri, 23 Aug 2024 06:43:30 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145182.2cb81622
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/e2l2_2YHl4mn3fcGhYEhECN86ik.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/e2l2_2YHl4mn3fcGhYEhECN86ik.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1139
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: vuaYg2ISG6h8xRiTny1diQ==
last-modified: Tue, 12 Mar 2024 15:58:05 GMT
etag: 0x8DC42AD348B272A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 49ef227d-a01e-0082-6cb2-950494000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=288745
expires: Fri, 23 Aug 2024 17:25:27 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145182.2cb81633
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/92-FtHmSi-ViMO5dPWNJUcPKLcI.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/92-FtHmSi-ViMO5dPWNJUcPKLcI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: xDlaPc4CIl9EtDB3rZQT4g==
last-modified: Wed, 17 Aug 2022 05:24:28 GMT
etag: 0x8DA8010C1F40BBC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a37e6b65-801e-00de-01dd-07f4b7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 633
cache-control: public, no-transform, max-age=174817
expires: Thu, 22 Aug 2024 09:46:39 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145182.2cb8163f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/BMHcFIy-Zeu4GqfEnHOyABd5ZQc.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/BMHcFIy-Zeu4GqfEnHOyABd5ZQc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: OAAEPZ6Y2Cv5Tvx1MtCI8g==
last-modified: Tue, 23 Apr 2024 23:37:23 GMT
etag: 0x8DC63EE53B7129E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: abc02086-701e-0009-34ee-eb417f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 4188
cache-control: public, no-transform, max-age=85443
expires: Wed, 21 Aug 2024 08:57:05 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145182.2cb81647
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/uq6jewoGavoU4pK6nYtO9pAum4o.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/uq6jewoGavoU4pK6nYtO9pAum4o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: LFuZvL0e5DJBYEu+T6/NbA==
last-modified: Mon, 17 Jun 2024 11:18:49 GMT
etag: 0x8DC8EBF434749CC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 327e44cd-101e-001f-4630-eab7a8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 351
vary: Accept-Encoding
akamai-grn: 0.4eba1302.1724056593.31e01572
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=85692
expires: Wed, 21 Aug 2024 09:01:14 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145182.2cb81646
timing-allow-origin: *
GET

https://r.bing.com/rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 5413
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 7Upr0pfg4HBuWeYA0wUzww==
last-modified: Sat, 11 May 2024 18:34:17 GMT
etag: 0x8DC71E8F767D7AA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 133557ff-301e-00b1-7997-d61ab9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=102111
expires: Wed, 21 Aug 2024 13:34:53 GMT
date: Tue, 20 Aug 2024 09:13:02 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145182.2cb8163e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/-Fw4kvKJlrDiWHon9-7scqImWDE.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/-Fw4kvKJlrDiWHon9-7scqImWDE.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 13 May 2024 21:58:07 GMT
etag: 0x8DC7397C5D86E3B
akamai-grn: 0.65361602.1723596104.13116965
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2293
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: I5nsquMHy+i0ceYeTQqxQA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3d6eafcb-c01e-0041-4171-cf5c48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=63524
expires: Wed, 21 Aug 2024 02:51:47 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb82226
timing-allow-origin: *
GET

https://r.bing.com/rp/GMIzwtneXaT3OZyIT4HPi9VAdAY.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/GMIzwtneXaT3OZyIT4HPi9VAdAY.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2740
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: Iiqeb0LJKqyR2JzDblFzqg==
last-modified: Mon, 01 May 2023 19:02:49 GMT
etag: 0x8DB4A76A84F60BD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8bd5f29e-a01e-0078-6fc6-a2a754000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=78703
expires: Wed, 21 Aug 2024 07:04:46 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb82239
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6wzJBpbyuAoCS5bfkKiW0Aw2R6o.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/6wzJBpbyuAoCS5bfkKiW0Aw2R6o.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2782
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: Euex687uz3qBvXNMot2FVA==
last-modified: Mon, 01 May 2023 19:03:03 GMT
etag: 0x8DB4A76B0EBC27D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1908dcdb-801e-00b4-757c-f0c862000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=168816
expires: Thu, 22 Aug 2024 08:06:39 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb82238
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/EzFgK8PyVGP4CdGFEGyqQSfLKpA.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/EzFgK8PyVGP4CdGFEGyqQSfLKpA.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 25312
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: +MpYl02849wY7Gt8W74m8Q==
last-modified: Fri, 02 Aug 2024 21:03:44 GMT
etag: 0x8DCB336989FDC22
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5d09bd47-001e-0061-213e-e527ef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=99377
expires: Wed, 21 Aug 2024 12:49:20 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb82252
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/nGczKe0kim5RNrhI35T372_931I.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/nGczKe0kim5RNrhI35T372_931I.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:03:00 GMT
etag: 0x8DB4A76AEAF78B0
akamai-grn: 0.bd777b5c.1724001556.c593d50
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 30744
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: ckQMIJkxhKmvUzx6lypM+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 58bf1de9-801e-0067-0f8b-26f0ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cache-control: public, no-transform, max-age=35581
expires: Tue, 20 Aug 2024 19:06:04 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb8224e
timing-allow-origin: *
GET

https://r.bing.com/rp/DicRs1X5x7sMwnmwcxBuO2kpGeI.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/DicRs1X5x7sMwnmwcxBuO2kpGeI.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2431
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: XUufPY0gbP+YcpjyldPYyw==
last-modified: Mon, 01 May 2023 19:03:09 GMT
etag: 0x8DB4A76B4142249
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 71d9dded-a01e-001a-0689-e26573000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=239819
expires: Fri, 23 Aug 2024 03:50:02 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb8224b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/VtjE_XIGplS2hp6VaMOcNKVZqbo.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/VtjE_XIGplS2hp6VaMOcNKVZqbo.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 45046
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: Cfi5Zy0l4tXfzIswG9s8ow==
last-modified: Mon, 01 May 2023 19:02:46 GMT
etag: 0x8DB4A76A6A42C9F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 311696bc-301e-008e-75dc-dcd21a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=250319
expires: Fri, 23 Aug 2024 06:45:02 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb82250
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5NUzUTlpAcMkl-Mmw3zA8g0YAjs.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/5NUzUTlpAcMkl-Mmw3zA8g0YAjs.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:03:13 GMT
etag: 0x8DB4A76B6D0A4C6
akamai-grn: 0.521a1202.1723975329.9648afd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 43
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: hB3j8CS/op8OEENjpXAoXQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 47ffa8eb-501e-007c-06c4-e92a53000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
akamai-grn: 0.4c1a1202.1724060598.1d396866
akamai-grn: 0.4c1a1202.1724141190.31ad2994
cache-control: public, no-transform, max-age=4984
expires: Tue, 20 Aug 2024 10:36:07 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb8224f
timing-allow-origin: *
GET

https://r.bing.com/rp/FxdcEV3ujzwMzNdEegYt9w58hMY.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/FxdcEV3ujzwMzNdEegYt9w58hMY.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2385
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: IIyZkh69tNHNDDpJ5ICV2A==
last-modified: Mon, 01 May 2023 19:03:07 GMT
etag: 0x8DB4A76B3515EE1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bc86594f-401e-0002-128f-b4ba14000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=209434
expires: Thu, 22 Aug 2024 19:23:37 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb82251
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TWG5wgdV8ROs_ZGvySDjvD6mS7E.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/TWG5wgdV8ROs_ZGvySDjvD6mS7E.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 9671
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: R14tsrq/kp/V2UOVAqqZ3Q==
last-modified: Wed, 05 Jul 2023 19:51:48 GMT
etag: 0x8DB7D9145403244
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fe9d9adb-301e-006a-2bcb-aadc84000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=383666
expires: Sat, 24 Aug 2024 19:47:29 GMT
date: Tue, 20 Aug 2024 09:13:03 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145183.2cb8224d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/paUjPXJZwJJt08_2gEwJFetOkG4.gz.js

msedge.exe

Remote address:

95.101.129.208:443

Request

GET /rp/paUjPXJZwJJt08_2gEwJFetOkG4.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 29 Apr 2024 16:32:03 GMT
etag: 0x8DC6869E6DDEFEA
akamai-grn: 0.42367a5c.1724057337.459bd8d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2480
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: GYr5+KNzp7yP9YBemFCewg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 33f6811d-a01e-0035-353a-d868b8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=232299
expires: Fri, 23 Aug 2024 01:44:43 GMT
date: Tue, 20 Aug 2024 09:13:04 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.e581655f.1724145184.2cb836ba
timing-allow-origin: *
GET

https://th.bing.com/th?id=OADD2.7490518607737_1EEF6ZTSG1M8QWVKC6&w=18&h=18&o=6&pid=21.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OADD2.7490518607737_1EEF6ZTSG1M8QWVKC6&w=18&h=18&o=6&pid=21.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=2279385
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_MEM_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb368
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3197
cache-control: public, max-age=800989
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb36a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c67e6990-5017-478a-997f-5ebe44002c37&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.c67e6990-5017-478a-997f-5ebe44002c37&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 481
cache-control: public, max-age=693376
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb366
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.e8f92e1f-a1b6-41ff-ad2a-5c2537f37f88&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.e8f92e1f-a1b6-41ff-ad2a-5c2537f37f88&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 645
cache-control: public, max-age=2592000
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb36b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c67e6990-5017-478a-997f-5ebe44002c37&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.c67e6990-5017-478a-997f-5ebe44002c37&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1021
cache-control: public, max-age=1300082
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_MEM_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb3de
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5d4f1eed-f1e9-4826-a992-3b3a48c27c20&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.5d4f1eed-f1e9-4826-a992-3b3a48c27c20&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 212
cache-control: public, max-age=2591982
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb369
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.e8f92e1f-a1b6-41ff-ad2a-5c2537f37f88&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.e8f92e1f-a1b6-41ff-ad2a-5c2537f37f88&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 755
cache-control: public, max-age=1918526
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb3df
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.94b0d12e-7c9f-4f0a-a61c-1d00f85b2fec&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.94b0d12e-7c9f-4f0a-a61c-1d00f85b2fec&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:09:16.2518813+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820090916
cookie: ipv6=hit=1724148556991
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aFMWcmGRAQAAhIIPbxjNfIytQxK/I6o0bQQHPNFSgHrwwrq9dF4upUBUttvGl7v+Z5KyU+NOLbOhqUFRPyy3wNYO2sBPWfp5aIfO0RhC/aY0LgZjfDOenyO8pZPdXHQgVpysLD529gqTLluv2/+NBGg7RlNS8K6CApqGZWa0mzisGfG+QYYatN8tN0jccUB5rDmzYIHPWgualpQ2gaY8UvvrITkrifBXwYCrypFnOXcx8Uw0ZIBXNg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1724144955&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 679
x-check-cacheable: YES
cache-control: public, max-age=2324985
date: Tue, 20 Aug 2024 09:12:53 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145173.1badb36c
GET

https://th.bing.com/th?id=OSAAS.DB62A6028B21B3356F4626BCDC1E6180&w=72&h=72&c=17&rs=1&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OSAAS.DB62A6028B21B3356F4626BCDC1E6180&w=72&h=72&c=17&rs=1&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1329
cache-control: public, max-age=2487039
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae327f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OJ.kTkc0KCzwa1WiQ&pid=news&w=68&h=12&rs=2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OJ.kTkc0KCzwa1WiQ&pid=news&w=68&h=12&rs=2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145172450&MRB=0
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=2075&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145173&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2247
cache-control: public, max-age=1050675
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MEM_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae32df
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1635
cache-control: public, max-age=1212508
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae3407
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1635
cache-control: public, max-age=1994312
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae3415
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.jmsYEd-pRDMlaS8YxKrW2gAAAA&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OIP.jmsYEd-pRDMlaS8YxKrW2gAAAA&w=80&h=80&c=7&qlt=80&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 470
cache-control: public, max-age=1488693
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae3419
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 891
x-check-cacheable: YES
cache-control: public, max-age=761865
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae3416
GET

https://th.bing.com/th?id=ODLS.bfe86b0a-0a95-49ca-9365-94a4f348a0c8&w=18&h=18&o=6&pid=AdsPlus

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODLS.bfe86b0a-0a95-49ca-9365-94a4f348a0c8&w=18&h=18&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1635
cache-control: public, max-age=1396510
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_HIT from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae3417
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODF.0QY68YH-YG5V7ZPdW4ZxaQ&w=17&h=17&c=2&o=6&pid=WebQS

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=ODF.0QY68YH-YG5V7ZPdW4ZxaQ&w=17&h=17&c=2&o=6&pid=WebQS HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 934
x-check-cacheable: YES
cache-control: public, max-age=2242334
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae3418
GET

https://th.bing.com/th?id=OIP.E3mkGJ7yr_I-uSjUNllnmgAAAA&w=216&h=115&c=2&o=6&pid=WebQS

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OIP.E3mkGJ7yr_I-uSjUNllnmgAAAA&w=216&h=115&c=2&o=6&pid=WebQS HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-08-20T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:12:53.8589036+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=12&RB=0&GB=0&RG=200&RP=9
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4028
x-check-cacheable: YES
cache-control: public, max-age=922884
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae341a
GET

https://th.bing.com/th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=300&h=186&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=300&h=186&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 13732
x-check-cacheable: YES
cache-control: public, max-age=2589668
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae3894
GET

https://th.bing.com/th?id=OVFT.kpZM8CEDkVvw06jmcUOmgC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.kpZM8CEDkVvw06jmcUOmgC&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3660
x-check-cacheable: YES
cache-control: public, max-age=2211762
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38b7
GET

https://th.bing.com/th?id=OVFT.jOFCyWjCHyFwUkLlGxa3eS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.jOFCyWjCHyFwUkLlGxa3eS&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4861
x-check-cacheable: YES
cache-control: public, max-age=2588652
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38bb
GET

https://th.bing.com/th?id=OVFT.q5fUlMRexwYVjcmIHh07lC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.q5fUlMRexwYVjcmIHh07lC&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 869
x-check-cacheable: YES
cache-control: public, max-age=606997
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38bc
GET

https://th.bing.com/th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 997
x-check-cacheable: YES
cache-control: public, max-age=2569196
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38bd
GET

https://th.bing.com/th?id=OVFT.do2qKbu37apMKajyglX9zy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.do2qKbu37apMKajyglX9zy&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1000
x-check-cacheable: YES
cache-control: public, max-age=2353532
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38be
GET

https://th.bing.com/th?id=OVFT.kherjYEI7ug0ENtHUm2qiC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.kherjYEI7ug0ENtHUm2qiC&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4358
cache-control: public, max-age=2240401
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38b6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.Zl2rYbEOa6RnR5PxgY7VLDcsFkfskAZrZiNUjyMAlyM&pid=news&w=30&h=30&c=14&rs=1&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OSK.Zl2rYbEOa6RnR5PxgY7VLDcsFkfskAZrZiNUjyMAlyM&pid=news&w=30&h=30&c=14&rs=1&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3764
x-check-cacheable: YES
cache-control: public, max-age=2442727
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38b8
GET

https://th.bing.com/th?id=OVFT.XTRqJyeFz_ZY_-3eXR19gS&pid=News&w=30&h=30&c=14&rs=1&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OVFT.XTRqJyeFz_ZY_-3eXR19gS&pid=News&w=30&h=30&c=14&rs=1&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2460
cache-control: public, max-age=2576473
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38b9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.efd0cd0fee4bdd2e0c7fcd241c61dda5&pid=news&w=30&h=30&c=14&rs=1&qlt=90

msedge.exe

Remote address:

95.101.129.235:443

Request

GET /th?id=OSK.efd0cd0fee4bdd2e0c7fcd241c61dda5&pid=news&w=30&h=30&c=14&rs=1&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091254
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3180
x-check-cacheable: YES
cache-control: public, max-age=2555697
date: Tue, 20 Aug 2024 09:13:02 GMT
x-cache: TCP_MISS from a95-101-129-198.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c681655f.1724145182.1bae38ba
DNS

235.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

235.129.101.95.in-addr.arpa

IN PTR

Response

235.129.101.95.in-addr.arpa

IN PTR

a95-101-129-235deploystaticakamaitechnologiescom
DNS

235.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

235.129.101.95.in-addr.arpa

IN PTR
DNS

208.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

208.129.101.95.in-addr.arpa

IN PTR

Response

208.129.101.95.in-addr.arpa

IN PTR

a95-101-129-208deploystaticakamaitechnologiescom
DNS

208.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

208.129.101.95.in-addr.arpa

IN PTR
DNS

services.bingapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

services.bingapis.com

IN A

Response

services.bingapis.com

IN CNAME

services-bingapis-com.e-0001.e-msedge.net

services-bingapis-com.e-0001.e-msedge.net

IN CNAME

e-0001.e-msedge.net

e-0001.e-msedge.net

IN A

13.107.5.80
GET

https://services.bingapis.com/favicon/?url=python.org

msedge.exe

Remote address:

13.107.5.80:443

Request

GET /favicon/?url=python.org HTTP/2.0
host: services.bingapis.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=86400
content-length: 1648
content-type: image/png
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8F97A6757B014D2993AE97D033CA8C6E Ref B: AMS04EDGE3411 Ref C: 2024-08-20T09:13:03Z
date: Tue, 20 Aug 2024 09:13:02 GMT
DNS

fpt.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

fpt.microsoft.com

IN A

Response

fpt.microsoft.com

IN CNAME

pme-greenid-prod.trafficmanager.net

pme-greenid-prod.trafficmanager.net

IN CNAME

greenid-prod-pme.eastus2.cloudapp.azure.com

greenid-prod-pme.eastus2.cloudapp.azure.com

IN A

52.167.30.171
GET

https://fpt.microsoft.com/tags?session_id=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

52.167.30.171:443

Request

GET /tags?session_id=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: fpt.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-HTTPAPI/2.0
access-control-allow-origin: *
set-cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%252b26TS%252ffhLyibk8ryI%252blR2FZWw%252fllQG20UJlowrJ2ujjIaM1bRvkv24x%252bTlYn2KYf9Oha3ID9Hc8ZPMQp%252bzGmj45I35iSnLhIJjWScFTxokVFJY%252bfiGlB0nba8MinsoXz%252ff8ywwSwX8GPuxbmoOhZnSCesTUgtA0JSwcPZeUJ4t0S6GQ%252fj3HPGQMdCO88jYe9RuDuj2WQ6dbmu50Qd25ZySW8iFLdbF55%252bKWNZ3gqS9WCPJc0RaMfYq3vwWQL7U0ncpxSVo; domain=.microsoft.com; path=/; secure; samesite=lax; httponly
set-cookie: MUID=c9dbef7c186c4e3f81e2ef993b911f58; expires=Wed, 20 Aug 2025 09:13:03 GMT; domain=.microsoft.com; path=/; secure; samesite=lax; httponly
date: Tue, 20 Aug 2024 09:13:03 GMT
GET

https://fpt.microsoft.com/Images/Clear.PNG?ctx=jscb1.0&session_id=044E27407A3C6EFA0F8B33A17B066F22&CustomerId=02C58649-E822-405B-B6C3-17A7509D2FCC&esi=YnVhPU1vemlsbGEvNS4wIChXaW5kb3dzIE5UIDEwLjA7IFdpbjY0OyB4NjQpIEFwcGxlV2ViS2l0LzUzNy4zNiAoS0hUTUwsIGxpa2UgR2Vja28pIENocm9tZS85Mi4wLjQ1MTUuMTMxIFNhZmFyaS81MzcuMzYgRWRnLzkyLjAuOTAyLjY3Jm9zPVdpbjMyJmxwcm9jPTgmb2w9dHJ1ZSZydHQ9MTAwJmNocm09dHJ1ZSZwcm9zdWI9MjAwMzAxMDcmZXZhbD0zMyZhcHB2PTUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgeDY0KSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvOTIuMC40NTE1LjEzMSBTYWZhcmkvNTM3LjM2IEVkZy85Mi4wLjkwMi42NyZscz10cnVlJmRtPTgmbXRwPTAmbmM9NjEmcHI9MSZzcj0xMjgweDcyMCZzY2Q9MjQmYXNyPTEyODB4NjgwJnR6PTAmZHN0PTAmdHpvPTAmYmw9ZW4tVVMmbXRoPWE4ODJhYmNkYzc3ZGRmZGY5ZWE4NDExNDcwNmI5YTdhJm10bj00JnBuPTMmcGg9ZWM1ZWJhZTA2MjFiZGMxMzBhZTkxYjE5ZTYxOTc2NTgmcD1wbHVnaW5fZmxhc2glM0RmYWxzZSUyNnBsdWdpbl93aW5kb3dzX21lZGlhX3BsYXllciUzRGZhbHNlJTI2cGx1Z2luX2Fkb2JlX2Fjcm9iYXQlM0RmYWxzZSUyNnBsdWdpbl9zaWx2ZXJsaWdodCUzRGZhbHNlJTI2cGx1Z2luX3F1aWNrdGltZSUzRGZhbHNlJTI2cGx1Z2luX3Nob2Nrd2F2ZSUzRGZhbHNlJTI2cGx1Z2luX3JlYWxwbGF5ZXIlM0RmYWxzZSUyNnBsdWdpbl92bGNfcGxheWVyJTNEZmFsc2UlMjZwbHVnaW5fZGV2YWx2ciUzRGZhbHNlJTI2cGx1Z2luX3N2Z192aWV3ZXIlM0RmYWxzZSUyNnBsdWdpbl9qYXZhJTNEZmFsc2UmbGg9aHR0cHMlM0ElMkYlMkZmcHQubWljcm9zb2Z0LmNvbSUyRnRhZ3MlM0ZzZXNzaW9uX2lkJTNEMDQ0RTI3NDA3QTNDNkVGQTBGOEIzM0ExN0IwNjZGMjImZHI9aHR0cHMlM0ElMkYlMkZ3d3cuYmluZy5jb20lMkYmdz04RENDMEY4NEJGNTA4NjAmaWQ9YzlkYmVmN2MtMTg2Yy00ZTNmLTgxZTItZWY5OTNiOTExZjU4JmE9JmM9NzQ0ZjFhMTJlZDk3NDhmMjUxMTAwMDFiNTZkZDgwMTM=&eci=eyJ1dmRyIjoiR29vZ2xlIEluYy4gKE5WSURJQSkiLCJ1cmRyIjoiQU5HTEUgKE5WSURJQSwgTlZJRElBIEdlRm9yY2UgUlRYIDMwNjAgVGkgRGlyZWN0M0QxMSB2c181XzAgcHNfNV8wLCBEM0QxMS0xMC4wLjE5MDQxLjU0NikiLCJ2ZHIiOiJXZWJLaXQiLCJyZHIiOiJXZWJLaXQgV2ViR0wiLCJpZHVoIjoiMDFmNTY4YTRjNDUwMjUyZjlmZTMyMDE5NmZhZDk4NWIifQ==&u1=&u3=10.0&u4=x86&u5=undefined

msedge.exe

Remote address:

52.167.30.171:443

Request

GET /Images/Clear.PNG?ctx=jscb1.0&session_id=044E27407A3C6EFA0F8B33A17B066F22&CustomerId=02C58649-E822-405B-B6C3-17A7509D2FCC&esi=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&eci=eyJ1dmRyIjoiR29vZ2xlIEluYy4gKE5WSURJQSkiLCJ1cmRyIjoiQU5HTEUgKE5WSURJQSwgTlZJRElBIEdlRm9yY2UgUlRYIDMwNjAgVGkgRGlyZWN0M0QxMSB2c181XzAgcHNfNV8wLCBEM0QxMS0xMC4wLjE5MDQxLjU0NikiLCJ2ZHIiOiJXZWJLaXQiLCJyZHIiOiJXZWJLaXQgV2ViR0wiLCJpZHVoIjoiMDFmNTY4YTRjNDUwMjUyZjlmZTMyMDE5NmZhZDk4NWIifQ==&u1=&u3=10.0&u4=x86&u5=undefined HTTP/2.0
host: fpt.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://fpt.microsoft.com/tags?session_id=044E27407A3C6EFA0F8B33A17B066F22
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-HTTPAPI/2.0
access-control-allow-origin: *
set-cookie: fptctx2=HVYUpI8DEaI3OYkchvnHcVotmIl0ZvX0MkM6Ezt3pLYcUoDAuLKGh1fQLUYT242%252blfHC4%252bvoD5tYh92sqaI%252fTRddlajQPuBnLaIrSyiSboSCNvZ%252ff9lgKPj4BrdGm0h%252f1a2YdCWXF9Bs7mf2oInBP1foEWKL7%252boZREokbNshXe7hQfdA6lpFIvfQB%252f0f2LxmFLVkHLANqaJVg5yKhdEjeKVwFXAMyMhdhkZHJ6njdDOdR3enFsV21JlTNgD06adonEwj8c7kRt5rYEfWTMyP%252fde8pOp8SqcR2Dh0EVDjjBjNPw%252fx%252fRpllDZMG6uT3amt; domain=.microsoft.com; path=/; secure; samesite=lax; httponly
set-cookie: MUID=c9dbef7c186c4e3f81e2ef993b911f58; expires=Wed, 20 Aug 2025 09:13:04 GMT; domain=.microsoft.com; path=/; secure; samesite=lax; httponly
date: Tue, 20 Aug 2024 09:13:03 GMT
GET

https://fpt2.microsoft.com/Clear.HTML?ctx=Ls1.0&wl=True&session_id=044E27407A3C6EFA0F8B33A17B066F22&id=c9dbef7c-186c-4e3f-81e2-ef993b911f58&w=8DCC0F84BF50860&tkt=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%252b26TS%252ffhLyibk8ryI%252blR2FZWw%252fllQG20UJlowrJ2ujjIaM1bRvkv24x%252bTlYn2KYf9Oha3ID9Hc8ZPMQp%252bzGmj45I35iSnLhIJjWScFTxokVFJY%252bfiGlB0nba8MinsoXz%252ff8ywwSwX8GPuxbmoOhZnSCesTUgtA0JSwcPZeUJ4t0S6GQ%252fj3HPGQMdCO88jYe9RuDuj2WQ6dbmu50Qd25ZySW8iFLdbF55%252bKWNZ3gqS9WCPJc0RaMfYq3vwWQL7U0ncpxSVo&CustomerId=02C58649-E822-405B-B6C3-17A7509D2FCC

msedge.exe

Remote address:

52.167.30.171:443

Request

GET /Clear.HTML?ctx=Ls1.0&wl=True&session_id=044E27407A3C6EFA0F8B33A17B066F22&id=c9dbef7c-186c-4e3f-81e2-ef993b911f58&w=8DCC0F84BF50860&tkt=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%252b26TS%252ffhLyibk8ryI%252blR2FZWw%252fllQG20UJlowrJ2ujjIaM1bRvkv24x%252bTlYn2KYf9Oha3ID9Hc8ZPMQp%252bzGmj45I35iSnLhIJjWScFTxokVFJY%252bfiGlB0nba8MinsoXz%252ff8ywwSwX8GPuxbmoOhZnSCesTUgtA0JSwcPZeUJ4t0S6GQ%252fj3HPGQMdCO88jYe9RuDuj2WQ6dbmu50Qd25ZySW8iFLdbF55%252bKWNZ3gqS9WCPJc0RaMfYq3vwWQL7U0ncpxSVo&CustomerId=02C58649-E822-405B-B6C3-17A7509D2FCC HTTP/2.0
host: fpt2.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://fpt.microsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-encoding: gzip
set-cookie: MUID=c9dbef7c186c4e3f81e2ef993b911f58; expires=Wed, 20 Aug 2025 09:13:04 GMT; domain=.microsoft.com; path=/; secure; samesite=lax; httponly
vary: Accept-Encoding
server: Microsoft-HTTPAPI/2.0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:13:04 GMT
GET

https://fpt.microsoft.com/images/Clear.PNG?ctx=Wlcb1.0&session_id=044E27407A3C6EFA0F8B33A17B066F22&tkt=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%2b26TS%2ffhLyibk8ryI%2blR2FZWw%2fllQG20UJlowrJ2ujjIaM1bRvkv24x%2bTlYn2KYf9Oha3IETLqxw7e%2fz2Va6pBv0zO0qVFGGXHRbBNZRgmM0KxX9nOwXSnT7JtXm67wQtgp0BeaqIyRtTPcd6cuanjX1GYq04GHpxeR4jy8SmN%2fmj01cBYEMTDPr7SSl1XjSYJEiCiYK536P389HTi6iWvrvjP8WvAsUkgxDNGFQJIZbqyTd4%3d

msedge.exe

Remote address:

52.167.30.171:443

Request

GET /images/Clear.PNG?ctx=Wlcb1.0&session_id=044E27407A3C6EFA0F8B33A17B066F22&tkt=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%2b26TS%2ffhLyibk8ryI%2blR2FZWw%2fllQG20UJlowrJ2ujjIaM1bRvkv24x%2bTlYn2KYf9Oha3IETLqxw7e%2fz2Va6pBv0zO0qVFGGXHRbBNZRgmM0KxX9nOwXSnT7JtXm67wQtgp0BeaqIyRtTPcd6cuanjX1GYq04GHpxeR4jy8SmN%2fmj01cBYEMTDPr7SSl1XjSYJEiCiYK536P389HTi6iWvrvjP8WvAsUkgxDNGFQJIZbqyTd4%3d HTTP/2.0
host: fpt.microsoft.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://fpt2.microsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
server: Microsoft-HTTPAPI/2.0
date: Tue, 20 Aug 2024 09:13:04 GMT
DNS

80.5.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

80.5.107.13.in-addr.arpa

IN PTR

Response
DNS

fpt2.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

fpt2.microsoft.com

IN A

Response

fpt2.microsoft.com

IN CNAME

pme-greenid-prod.trafficmanager.net

pme-greenid-prod.trafficmanager.net

IN CNAME

greenid-prod-pme.eastus2.cloudapp.azure.com

greenid-prod-pme.eastus2.cloudapp.azure.com

IN A

52.167.30.171
DNS

171.30.167.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

171.30.167.52.in-addr.arpa

IN PTR

Response
DNS

www.python.org

msedge.exe

Remote address:

8.8.8.8:53

Request

www.python.org

IN A

Response

www.python.org

IN CNAME

dualstack.python.map.fastly.net

dualstack.python.map.fastly.net

IN A

151.101.188.223
GET

https://www.python.org/downloads/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /downloads/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 585436
date: Tue, 20 Aug 2024 09:13:06 GMT
x-served-by: cache-iad-kcgs7200066-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 132, 0
x-timer: S1724145186.055003,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 19366
GET

https://www.python.org/static/stylesheets/style.1c0f356ef3c7.css

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/stylesheets/style.1c0f356ef3c7.css HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/css
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-59262"
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 14140
x-served-by: cache-iad-kiad7000022-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 16, 3
x-timer: S1724145186.190998,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 127179
GET

https://www.python.org/static/stylesheets/mq.f9187444a4a1.css

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/stylesheets/mq.f9187444a4a1.css HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/css
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-7966"
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 581648
x-served-by: cache-iad-kiad7000063-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1724145186.191207,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 7103
GET

https://www.python.org/static/stylesheets/no-mq.bf0c425cdb73.css

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/stylesheets/no-mq.bf0c425cdb73.css HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/css
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-1cd88"
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 7391
x-served-by: cache-iad-kcgs7200105-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 4511, 3
x-timer: S1724145186.191433,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 19637
GET

https://www.python.org/static/js/libs/modernizr.js

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/js/libs/modernizr.js HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
last-modified: Fri, 28 Jun 2024 00:44:58 GMT
etag: "667e078a-2de9"
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 590012
x-served-by: cache-iad-kiad7000039-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 52, 3
x-timer: S1724145186.191919,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 5053
GET

https://www.python.org/static/js/libs/masonry.pkgd.min.js

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/js/libs/masonry.pkgd.min.js HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: application/javascript
last-modified: Fri, 28 Jun 2024 00:44:58 GMT
etag: "667e078a-b2"
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 597845
x-served-by: cache-iad-kjyo7100114-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 62, 3
x-timer: S1724145187.625201,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 143
GET

https://www.python.org/static/js/libs/html-includes.js

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/js/libs/html-includes.js HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: application/javascript
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-8d2a"
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 1509
date: Tue, 20 Aug 2024 09:13:06 GMT
x-served-by: cache-iad-kcgs7200095-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 14085, 0
x-timer: S1724145187.625514,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 10872
GET

https://www.python.org/static/js/main-min.f5487accf7ed.js

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/js/main-min.f5487accf7ed.js HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: image/png
last-modified: Fri, 28 Jun 2024 00:44:58 GMT
etag: "667e078a-2776"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 6492
x-served-by: cache-iad-kcgs7200128-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 36, 2
x-timer: S1724145187.626248,VS0,VE0
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 10102
GET

https://www.python.org/static/img/python-logo.png

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/img/python-logo.png HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: image/png
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-1e381"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 584339
date: Tue, 20 Aug 2024 09:13:06 GMT
x-served-by: cache-iad-kcgs7200091-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 3477, 0
x-timer: S1724145187.634891,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 123777
GET

https://www.python.org/static/img/landing-downloads.0f509c33f57f.png?1576869008

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/img/landing-downloads.0f509c33f57f.png?1576869008 HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.python.org/static/stylesheets/mq.f9187444a4a1.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: application/javascript
last-modified: Fri, 28 Jun 2024 00:44:58 GMT
etag: "667e078a-6643"
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 0
x-served-by: cache-iad-kiad7000077-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 22, 2
x-timer: S1724145187.625143,VS0,VE76
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 7869
GET

https://www.python.org/static/fonts/SourceSansPro-Regular-webfont.fd0d51605201.woff

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/fonts/SourceSansPro-Regular-webfont.fd0d51605201.woff HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.python.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.python.org/static/stylesheets/style.1c0f356ef3c7.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: font/woff
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-6718"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 9934
x-served-by: cache-iad-kjyo7100044-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 47, 3
x-timer: S1724145187.769086,VS0,VE0
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 26392
GET

https://www.python.org/static/fonts/SourceSansPro-Bold-webfont.be855452e565.woff

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/fonts/SourceSansPro-Bold-webfont.be855452e565.woff HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.python.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.python.org/static/stylesheets/style.1c0f356ef3c7.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: font/woff
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-6690"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 599477
x-served-by: cache-iad-kjyo7100120-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 33, 3
x-timer: S1724145187.769165,VS0,VE0
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 26256
GET

https://www.python.org/static/fonts/FluxRegular.f5549a4fe75f.woff

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/fonts/FluxRegular.f5549a4fe75f.woff HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.python.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.python.org/static/stylesheets/style.1c0f356ef3c7.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: font/woff
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-7528"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 598503
x-served-by: cache-iad-kcgs7200137-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 20, 3
x-timer: S1724145187.769377,VS0,VE0
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 29992
GET

https://www.python.org/static/fonts/FluxBold.3fd71a747d5c.woff

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/fonts/FluxBold.3fd71a747d5c.woff HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.python.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.python.org/static/stylesheets/style.1c0f356ef3c7.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: font/woff
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-71b1"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:06 GMT
age: 60587
x-served-by: cache-iad-kjyo7100176-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 4034, 3
x-timer: S1724145187.775793,VS0,VE0
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 29105
GET

https://www.python.org/authenticated

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /authenticated HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Tue, 20 Aug 2024 09:13:07 GMT
x-served-by: cache-iad-kjyo7100177-IAD, cache-lhr-egll1980084-LHR
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1724145187.982314,VS0,VE102
vary: Cookie
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 274
GET

https://www.python.org/box/supernav-python-about/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /box/supernav-python-about/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:07 GMT
age: 1835
x-served-by: cache-iad-kcgs7200159-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 126, 1
x-timer: S1724145188.577000,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 545
GET

https://www.python.org/box/supernav-python-downloads/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /box/supernav-python-downloads/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:07 GMT
age: 2111
x-served-by: cache-iad-kiad7000136-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 213, 1
x-timer: S1724145188.576923,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 410
GET

https://www.python.org/box/supernav-python-documentation/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /box/supernav-python-documentation/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:07 GMT
age: 3402
x-served-by: cache-iad-kiad7000035-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 183, 1
x-timer: S1724145188.578505,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 261
GET

https://www.python.org/box/supernav-python-community/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /box/supernav-python-community/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:07 GMT
age: 2111
x-served-by: cache-iad-kiad7000128-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 31, 1
x-timer: S1724145188.579381,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 546
GET

https://www.python.org/box/supernav-python-success-stories/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /box/supernav-python-success-stories/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:07 GMT
age: 2111
x-served-by: cache-iad-kjyo7100116-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 4, 1
x-timer: S1724145188.579627,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 96
GET

https://www.python.org/box/supernav-python-blog/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /box/supernav-python-blog/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 1835
date: Tue, 20 Aug 2024 09:13:07 GMT
x-served-by: cache-iad-kjyo7100177-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 164, 0
x-timer: S1724145188.579700,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 447
GET

https://www.python.org/box/supernav-python-events/

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /box/supernav-python-events/ HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:07 GMT
age: 1835
x-served-by: cache-iad-kjyo7100025-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 105, 1
x-timer: S1724145188.579039,VS0,VE3
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 413
GET

https://www.python.org/static/favicon.ico

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/favicon.ico HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145185.0.0.0
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186

Response

HTTP/2.0 200

content-type: image/x-icon
last-modified: Fri, 28 Jun 2024 00:44:58 GMT
etag: "667e078a-3aee"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:13:07 GMT
age: 58084
x-served-by: cache-iad-kcgs7200108-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 34, 3
x-timer: S1724145188.586763,VS0,VE0
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 15086
GET

https://www.python.org/ftp/python/3.12.5/python-3.12.5-amd64.exe

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /ftp/python/3.12.5/python-3.12.5-amd64.exe HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.python.org/downloads/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145189.0.0.0

Response

HTTP/2.0 200

server: nginx
content-type: application/octet-stream
last-modified: Tue, 06 Aug 2024 21:28:30 GMT
etag: "66b2957e-1947d68"
x-clacks-overhead: GNU Terry Pratchett
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 613775
date: Tue, 20 Aug 2024 09:13:10 GMT
x-served-by: cache-lga21944-LGA, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 161, 0
x-timer: S1724145191.676778,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 26508648
GET

https://www.python.org/static/fonts/fontawesome-webfont.af7ae505a9ee.woff2?v=4.7.0

msedge.exe

Remote address:

151.101.188.223:443

Request

GET /static/fonts/fontawesome-webfont.af7ae505a9ee.woff2?v=4.7.0 HTTP/2.0
host: www.python.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.python.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.python.org/static/stylesheets/no-mq.bf0c425cdb73.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.440201249.1724145185
cookie: __utma=32101439.440201249.1724145185.1724145186.1724145186.1
cookie: __utmc=32101439
cookie: __utmz=32101439.1724145186.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided)
cookie: __utmt=1
cookie: __utmb=32101439.1.10.1724145186
cookie: _ga_TF35YF9CVH=GS1.1.1724145185.1.0.1724145189.0.0.0

Response

HTTP/2.0 200

content-type: font/woff2
last-modified: Fri, 28 Jun 2024 00:44:59 GMT
etag: "667e078b-12d68"
cache-control: max-age=604800, public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 600929
date: Tue, 20 Aug 2024 09:16:08 GMT
x-served-by: cache-iad-kjyo7100118-IAD, cache-lhr-egll1980084-LHR
x-cache: HIT, HIT
x-cache-hits: 4, 0
x-timer: S1724145369.893616,VS0,VE1
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-length: 77160
DNS

223.188.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

223.188.101.151.in-addr.arpa

IN PTR

Response
DNS

223.188.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

223.188.101.151.in-addr.arpa

IN PTR
DNS

223.188.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

223.188.101.151.in-addr.arpa

IN PTR
DNS

plausible.io

msedge.exe

Remote address:

8.8.8.8:53

Request

plausible.io

IN A

Response

plausible.io

IN A

143.244.38.136
DNS

ajax.googleapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ajax.googleapis.com

IN A

Response

ajax.googleapis.com

IN A

142.250.74.234
GET

https://plausible.io/js/script.js

msedge.exe

Remote address:

143.244.38.136:443

Request

GET /js/script.js HTTP/2.0
host: plausible.io
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.python.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:13:06 GMT
content-type: application/javascript
vary: Accept-Encoding
server: BunnyCDN-UK1-886
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: GB
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":9443"; ma=2592000
cache-control: public, must-revalidate, max-age=86400
application: 127.0.0.1
cross-origin-resource-policy: cross-origin
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/19/2024 09:39:24
cdn-edgestorageid: 886
cdn-status: 200
cdn-requestid: d114e721600104b27776c572c81a8b90
cdn-cache: HIT
content-encoding: br
GET

https://ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.css

msedge.exe

Remote address:

142.250.74.234:443

Request

GET /ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.css HTTP/2.0
host: ajax.googleapis.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.python.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

226.20.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

226.20.18.104.in-addr.arpa

IN PTR

Response
DNS

136.38.244.143.in-addr.arpa

Remote address:

8.8.8.8:53

Request

136.38.244.143.in-addr.arpa

IN PTR

Response

136.38.244.143.in-addr.arpa

IN PTR

143-244-38-136 bunnyinfranet
DNS

234.74.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

234.74.250.142.in-addr.arpa

IN PTR

Response

234.74.250.142.in-addr.arpa

IN PTR

par10s40-in-f101e100net
DNS

238.75.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

238.75.250.142.in-addr.arpa

IN PTR

Response

238.75.250.142.in-addr.arpa

IN PTR

par10s41-in-f141e100net
DNS

media.ethicalads.io

msedge.exe

Remote address:

8.8.8.8:53

Request

media.ethicalads.io

IN A

Response

media.ethicalads.io

IN A

104.26.5.62

media.ethicalads.io

IN A

104.26.4.62

media.ethicalads.io

IN A

172.67.71.230
DNS

media.ethicalads.io

msedge.exe

Remote address:

8.8.8.8:53

Request

media.ethicalads.io

IN A

Response

media.ethicalads.io

IN A

104.26.4.62

media.ethicalads.io

IN A

172.67.71.230

media.ethicalads.io

IN A

104.26.5.62
DNS

s3.dualstack.us-east-2.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

s3.dualstack.us-east-2.amazonaws.com

IN A

Response

s3.dualstack.us-east-2.amazonaws.com

IN A

52.219.101.209

s3.dualstack.us-east-2.amazonaws.com

IN A

52.219.94.153

s3.dualstack.us-east-2.amazonaws.com

IN A

3.5.129.226

s3.dualstack.us-east-2.amazonaws.com

IN A

52.219.178.89

s3.dualstack.us-east-2.amazonaws.com

IN A

3.5.130.62

s3.dualstack.us-east-2.amazonaws.com

IN A

3.5.132.206

s3.dualstack.us-east-2.amazonaws.com

IN A

3.5.130.205

s3.dualstack.us-east-2.amazonaws.com

IN A

52.219.111.185
DNS

ssl.google-analytics.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ssl.google-analytics.com

IN A

Response

ssl.google-analytics.com

IN A

142.250.179.104
GET

https://ssl.google-analytics.com/ga.js

msedge.exe

Remote address:

142.250.179.104:443

Request

GET /ga.js HTTP/2.0
host: ssl.google-analytics.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.python.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://media.ethicalads.io/media/client/v1.4.0/ethicalads.min.js

msedge.exe

Remote address:

104.26.5.62:443

Request

GET /media/client/v1.4.0/ethicalads.min.js HTTP/2.0
host: media.ethicalads.io
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.python.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.python.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:13:07 GMT
content-type: text/javascript
content-md5: Xkob22S0ykfLDWl687vNjQ==
last-modified: Tue, 14 Dec 2021 18:59:05 GMT
x-ms-request-id: 90861ce5-401e-00c4-774e-795552000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: max-age=3600
cf-cache-status: HIT
age: 6506
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YgkFnkO9grLmZGKTd5KedNnxgAsReKWX6v3iYtXcoXZNjVVNttd0%2FGvx%2B3xTDHKZS1RtIBTUnYiCDwhDMTACZ03xkOsY8M0hO9yiXGi0fYaLWJYfI6L6ytlnv%2FZitJYqZymA72Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8b6143fb3b2f6585-LHR
content-encoding: br
GET

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/fa/94/fa94273e62dc63ae15413103778d64ed.png

msedge.exe

Remote address:

52.219.101.209:443

Request

GET /pythondotorg-assets/media/cache/fa/94/fa94273e62dc63ae15413103778d64ed.png HTTP/1.1
Host: s3.dualstack.us-east-2.amazonaws.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.python.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

x-amz-id-2: ioyNOd2aXJWxhCfjSL1lGRVfaJcLr9pvTctF3TD5i/t2SKLm5rANMH5gJhVx39/yAQHR4E9oYHQ=
x-amz-request-id: 1Y068FMMRFHNDB2R
Date: Tue, 20 Aug 2024 09:13:08 GMT
Last-Modified: Thu, 20 Jul 2023 23:11:19 GMT
ETag: "fb05993fb6c9ffcbe1662f127593e917"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=86400
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 49167
GET

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/1a/5a/1a5a874923ac188688581482e0bce714.png

msedge.exe

Remote address:

52.219.101.209:443

Request

GET /pythondotorg-assets/media/cache/1a/5a/1a5a874923ac188688581482e0bce714.png HTTP/1.1
Host: s3.dualstack.us-east-2.amazonaws.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.python.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

x-amz-id-2: kdaCk7IGZZdTJ5lLE3jq5NRhbd4EZC6ZV+hXPoqYhvFtO79ISLvfYrvNaZqXFAVHb58UXZwEwYM=
x-amz-request-id: 1Y09TG4AV37WN3EN
Date: Tue, 20 Aug 2024 09:13:08 GMT
Last-Modified: Mon, 18 Mar 2024 21:33:50 GMT
ETag: "03769b1571e48eda25e4d447b620818f"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=86400
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 21522
GET

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/03/c7/03c7f16a036e91207c870cfbeceb0c2b.png

msedge.exe

Remote address:

52.219.101.209:443

Request

GET /pythondotorg-assets/media/cache/03/c7/03c7f16a036e91207c870cfbeceb0c2b.png HTTP/1.1
Host: s3.dualstack.us-east-2.amazonaws.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.python.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

x-amz-id-2: 1IZsQp8rnf2TKmTb5mRrzxhriB5cjO+69o6ldjbik7SJL9gGoRYZoSfLxulORP8fmVXxp3kzWS4=
x-amz-request-id: 1Y04NM57SSTD1H1W
Date: Tue, 20 Aug 2024 09:13:08 GMT
Last-Modified: Mon, 22 Apr 2024 18:43:26 GMT
ETag: "723e44c879f774adda1e34d798ba3553"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=86400
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 13742
GET

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/fd/b8/fdb8a556976d36cf0c79aa7645dc2457.png

msedge.exe

Remote address:

52.219.101.209:443

Request

GET /pythondotorg-assets/media/cache/fd/b8/fdb8a556976d36cf0c79aa7645dc2457.png HTTP/1.1
Host: s3.dualstack.us-east-2.amazonaws.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.python.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

x-amz-id-2: 4IGRlW6NQ0Jt0NA+p87soHD0ZiPKENlzNy9Q25YKJGueJTXbqhHRnuLN/hIrpNGbYNyZEVir9Yc=
x-amz-request-id: 1Y04401XCDECS1TA
Date: Tue, 20 Aug 2024 09:13:08 GMT
Last-Modified: Thu, 20 Jul 2023 23:11:17 GMT
ETag: "0432feb9ebbf31ae04139a5c8e29e267"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=86400
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 20359
GET

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/da/3e/da3e52fe46dddbfec34bc620621015d6.png

msedge.exe

Remote address:

52.219.101.209:443

Request

GET /pythondotorg-assets/media/cache/da/3e/da3e52fe46dddbfec34bc620621015d6.png HTTP/1.1
Host: s3.dualstack.us-east-2.amazonaws.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.python.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

x-amz-id-2: pQER+L6H96kb35UTkWleRAsc5RyklyEzm13c6dk1nmrXj/5AE+LuFbKtnW9WCkHh0voQkVRN6QY=
x-amz-request-id: 1Y05H7C6NDCZFW1A
Date: Tue, 20 Aug 2024 09:13:08 GMT
Last-Modified: Thu, 20 Jul 2023 23:11:18 GMT
ETag: "249de6a74990ca00624950b6c555b7c3"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=86400
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 18324
POST

https://plausible.io/api/event

msedge.exe

Remote address:

143.244.38.136:443

Request

POST /api/event HTTP/2.0
host: plausible.io
content-length: 101
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain
accept: */*
origin: https://www.python.org
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 202

date: Tue, 20 Aug 2024 09:13:07 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: BunnyCDN-UK1-886
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: GB
access-control-allow-credentials: true
access-control-allow-origin: *
alt-svc: h3=":9443"; ma=2592000
cache-control: must-revalidate, max-age=0, private
application: 127.0.0.1
permissions-policy: interest-cohort=()
x-request-id: F-1k6aozYpFKK6QqSHmM
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 202
cdn-cachedat: 08/20/2024 09:13:07
cdn-edgestorageid: 886
cdn-requestid: bb701661965cefbb695121b92f55a526
DNS

2p66nmmycsj3.statuspage.io

msedge.exe

Remote address:

8.8.8.8:53

Request

2p66nmmycsj3.statuspage.io

IN A

Response

2p66nmmycsj3.statuspage.io

IN CNAME

elb-status-us.statuspage.io

elb-status-us.statuspage.io

IN A

18.244.155.119

elb-status-us.statuspage.io

IN A

18.244.155.108

elb-status-us.statuspage.io

IN A

18.244.155.98

elb-status-us.statuspage.io

IN A

18.244.155.106
GET

https://2p66nmmycsj3.statuspage.io/api/v2/status.json

msedge.exe

Remote address:

18.244.155.119:443

Request

GET /api/v2/status.json HTTP/2.0
host: 2p66nmmycsj3.statuspage.io
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: */*
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
origin: https://www.python.org
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.python.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
content-length: 227
date: Tue, 20 Aug 2024 09:13:06 GMT
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
x-statuspage-version: 9c10e69afbb5769cf3e4ddbe89032083ae429ed3
strict-transport-security: max-age=259200
x-statuspage-skip-logging: true
access-control-allow-origin: *
cache-control: max-age=3, public
x-pollinator-metadata-service: status-page-web-pages
x-runtime: 0.037468
accept-ranges: bytes
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: ee8d50bbe4dc47a6a7c30cdb9ccc3f03
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
server: AtlassianEdge
etag: W/"6639246d069ae34ce83e685a53b1f0fb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d387fec28536c5aa92926c56363afe9a.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P8
x-amz-cf-id: UA5Av-scrmG2EwlIIFwEqkubG5x1VlPA_w65mzrEk93wDKQuYg4UgQ==
age: 1
DNS

62.5.26.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

62.5.26.104.in-addr.arpa

IN PTR

Response
DNS

104.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

104.179.250.142.in-addr.arpa

IN PTR

Response

104.179.250.142.in-addr.arpa

IN PTR

par21s20-in-f81e100net
DNS

209.101.219.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

209.101.219.52.in-addr.arpa

IN PTR

Response

209.101.219.52.in-addr.arpa

IN PTR

s3 us-east-2 amazonawscom
DNS

119.155.244.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

119.155.244.18.in-addr.arpa

IN PTR

Response

119.155.244.18.in-addr.arpa

IN PTR

server-18-244-155-119lhr50r cloudfrontnet
DNS

www.youtube.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.youtube.com

IN A

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN A

216.58.214.174

youtube-ui.l.google.com

IN A

142.250.178.142

youtube-ui.l.google.com

IN A

142.250.201.174

youtube-ui.l.google.com

IN A

216.58.215.46

youtube-ui.l.google.com

IN A

172.217.18.206

youtube-ui.l.google.com

IN A

142.250.75.238

youtube-ui.l.google.com

IN A

142.250.179.78

youtube-ui.l.google.com

IN A

216.58.213.78

youtube-ui.l.google.com

IN A

172.217.20.174

youtube-ui.l.google.com

IN A

142.250.179.110

youtube-ui.l.google.com

IN A

172.217.20.206
DNS

www.youtube.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.youtube.com

IN A

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN A

142.250.179.78

youtube-ui.l.google.com

IN A

216.58.215.46

youtube-ui.l.google.com

IN A

142.250.201.174

youtube-ui.l.google.com

IN A

172.217.20.174

youtube-ui.l.google.com

IN A

216.58.214.174

youtube-ui.l.google.com

IN A

172.217.20.206

youtube-ui.l.google.com

IN A

142.250.75.238

youtube-ui.l.google.com

IN A

172.217.18.206

youtube-ui.l.google.com

IN A

142.250.179.110

youtube-ui.l.google.com

IN A

216.58.213.78

youtube-ui.l.google.com

IN A

142.250.178.142
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

173.222.211.40

a1851.dscg2.akamai.net

IN A

173.222.211.41
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145182145%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145182145%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182682%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182759%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182888%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145184994%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145182145%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145182145%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182682%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182759%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182888%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145184994%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145393.1e3a870d
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145393.1e3a870f
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145391915%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145391915%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145393.1e3a870e
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 624
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145393.1e3a9101
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 772
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145395.1e3aac64
GET

https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=e59fc1a8e02e45e2959630eb39fde1d2&oit=1&cp=1&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=w&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=e59fc1a8e02e45e2959630eb39fde1d2&oit=1&cp=1&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 435
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45ef661f64f1da31170189872c0b6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-4f+Wgj5zmO+oIA/VcqrCFH6PT3MHKN0wV38elmq3FzQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:38 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:38 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=27659C6A0B46674B3768888B0A4966F3; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:38 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145398.1e3aee7b
GET

https://www.bing.com/qbox?query=wi&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=d2fe572972cf44f1b96598aeef68fe12&oit=1&cp=2&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=wi&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=d2fe572972cf44f1b96598aeef68fe12&oit=1&cp=2&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 420
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45ef664f549919c553aac755df37f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-SAY4WBdc+Lsb8RnJj7FODjiB6tjmaZykbSU9VbskXZ0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:38 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:38 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=12D4D45D68F660E439B5C0BC69716127; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:38 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145398.1e3af092
GET

https://www.bing.com/qbox?query=win&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=1f567bca71b7411c897f96fe5355c909&oit=1&cp=3&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=win&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=1f567bca71b7411c897f96fe5355c909&oit=1&cp=3&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 452
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45ef74e76477d873632566d834d99
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-iG4UBZBe0sU3Oe90cHMSYPkwr1bkaKrYvmWh0MCz2oc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:39 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:39 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=05DEACE8698B66820475B80968DE67C9; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:39 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145399.1e3af5f9
GET

https://www.bing.com/qbox?query=wind&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=422f947bfc7b48d2aae8b4f747daaccd&oit=1&cp=4&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=wind&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=422f947bfc7b48d2aae8b4f747daaccd&oit=1&cp=4&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 366
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45ef716b5415faa8aff2f3cbf0cb2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-JZE4ZL4ZlWR1FWk0o8WJoLw8wDLsYD6OfP6NWlLP0F4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:39 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:39 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=05A405D622A6601E3B44113723D7614E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:39 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145399.1e3b071e
GET

https://www.bing.com/qbox?query=windw&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=7ca2a41405fe47fc98c4578012f4d1cf&oit=1&cp=5&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windw&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=7ca2a41405fe47fc98c4578012f4d1cf&oit=1&cp=5&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 483
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45ef845784c6092a9fab0badf5e2a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-0NosugcEicG1lWCZ93H7Q/34x6z9o8YFqSpBHzpdgms='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:40 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:40 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=302B4E44FB8E60D638405AA5FAE16153; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:40 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145400.1e3b1b7e
GET

https://www.bing.com/qbox?query=wind&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=4281f6d09a0248aa9afbf029e60081f7&oit=1&cp=4&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=wind&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=4281f6d09a0248aa9afbf029e60081f7&oit=1&cp=4&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 474
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45efb3324478a8d0468a7ab9b33d0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-Hed6VSlWgXiKPld5Nad3sv2jmNRzI6za2sVcaJc6BFI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:43 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=21361C9F48F6632A3BAC087E497B623F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145403.1e3b4a6c
GET

https://www.bing.com/qbox?query=windo&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=c489a63e552d40ec95ba439d7d9fed00&oit=1&cp=5&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windo&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=c489a63e552d40ec95ba439d7d9fed00&oit=1&cp=5&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 473
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45efb5ed844f9b29e3a547753f761
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-QpiB21DhupdFm+MQ4qCrH0LAOJ0CnjgD5hnss4znuP0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:43 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2EDD53123D956CA42C0D47F33CE16D2B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145403.1e3b4d19
GET

https://www.bing.com/qbox?query=window&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=7f98e8b1f7734938b8718f1b292b3f10&oit=1&cp=6&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=window&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=7f98e8b1f7734938b8718f1b292b3f10&oit=1&cp=6&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 461
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45efbf27f413fa4b4b249b616ce99
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-kfWj5JuCEQ8adK8ihjB8aLQq9lOpCbLlvr+T35v4SVI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:43 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3CAC823C11B36FED00E896DD10426EC3; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145403.1e3b51d1
GET

https://www.bing.com/qbox?query=windows&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=61a4ee7881794f60a1154babf1889ace&oit=1&cp=7&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windows&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=61a4ee7881794f60a1154babf1889ace&oit=1&cp=7&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 302
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45efb84774d8c9ed089dea28d23f4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-EZglqxlWn7mAl2oeTACayDgQTCUiMHZ4XHiAkaIjf9g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:43 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3B2D1113CADE623A224C05F2CB4563E6; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145403.1e3b5982
GET

https://www.bing.com/qbox?query=windows+&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=c04991c67660494a91a9c4e82ccb82bd&oit=1&cp=8&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windows+&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=c04991c67660494a91a9c4e82ccb82bd&oit=1&cp=8&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 330
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45efc4917491f936224023ba9e37f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-g/w6j2O9agT7eMyZ2LZ/QjJYJH+3ATAw+35SHbv3rco='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:16:44 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:16:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=12B2726055D06B902E87668154276A85; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:16:44 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145403.1e3b5b39
GET

https://www.bing.com/qbox?query=windows+v&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=267fc2498d384b12b0e2b9138850fa51&oit=4&cp=9&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windows+v&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=267fc2498d384b12b0e2b9138850fa51&oit=4&cp=9&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145407.1e3ba80e
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 647
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145407.1e3ba80c
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.TALGWRS%22,%22FID%22:%22CI%22,%22Name%22:%22C%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.TALGWRS%22,%22FID%22:%22CI%22,%22Name%22:%22C%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:16:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145407.1e3ba941
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 694
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145422.1e3ca3f2
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1167
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145423.1e3cb467
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 860
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:06 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145426.1e3ce1c5
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 814
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 324
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45f21cb1b4a33866321266806301a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-bWnHvWJ2kJjoTYINVxs713YgIsRFpbPs+s5BQIiZQW0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:17:21 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:17:21 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3F08A92EA1A667E12A73BDCFA0996692; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:17:21 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145441.1e3e16d8
GET

https://www.bing.com/qbox?query=windows+vi&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=a6ae1ebfde134d82b2555d1a77b82983&oit=4&cp=10&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windows+vi&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=a6ae1ebfde134d82b2555d1a77b82983&oit=4&cp=10&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 319
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45f26ed1f4064a1b44651803364b8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-xyGOFgDLq0E6noj8KePQjpIct+oaHrFLGomJRzi//fM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:17:26 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:17:26 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2D5D6CF8CD7764F2091D7819CC4165EB; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:17:26 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145446.1e3e6152
GET

https://www.bing.com/qbox?query=windows+vis&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=a49fa2eafac94314a54ead41ab3bfca7&oit=4&cp=11&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windows+vis&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=a49fa2eafac94314a54ead41ab3bfca7&oit=4&cp=11&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 334
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45f280ab3491287a2751f8c075e8b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-vgANZaUe+7MuivhvOW6FW40jWzFLZ7c/4icJTEJ3X1A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:17:28 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:17:28 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=25D805A60BEC63BD035F11470A0062F2; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:17:28 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145448.1e3e8e34
GET

https://www.bing.com/qbox?query=windows+visa&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=ba7da438eff14df1a5931112868687c6&oit=4&cp=12&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windows+visa&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=ba7da438eff14df1a5931112868687c6&oit=4&cp=12&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-length: 310
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45f2b762e49da8fb6ec9c1b4339d4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-V0xLp6+F7Bb1emnf8xpwX/BEo5ovR2ms5kbe1wG8oJ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:17:31 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:17:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0A816B1ABF3A68571BEB7FFBBE2A691D; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Sun, 14-Sep-2025 09:17:31 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145451.1e3eb53f
GET

https://www.bing.com/qbox?query=windows+visal&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=bb3f64dcee9b4308a43146494d158c1d&oit=4&cp=13&pgcl=9

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /qbox?query=windows+visal&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=bb3f64dcee9b4308a43146494d158c1d&oit=4&cp=13&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:16:35 GMT
vary: Accept-Encoding
x-eventid: 66c45f2fce04430d955cb36ac4262664
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-XLftRN0//L4gt1lktQTJeVjztspmbd9bmZnePJd7cjU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:17:35 GMT
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145455.1e3eff7a
set-cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:29 GMT; Max-Age=6534; Secure
GET

https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQlSV+aB4ZcmGRAQAAzKQPbxhpYbjqCRBiQ1s6INtCiNmrPHvJogaKQ1onelAm8yXt6by+vohWaD7ozNbgCLEMbULcgkL5S6k/IWkSoLUgMxGFlM5O/jM8g1p4KqRDVywTbPjGBn5nEz8tJx37Nc7pslXhCYkBVOZwUa+1zHwHEav6cNS1d63T5dIHrpJk9kS5jI2FKpWvATo37gr1biTCX8nvgWWW2m7qXgtWwT9MTDEE1TxXVTTPA/G2uw==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145455.1e3f018d
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 679
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145455.1e3f018e
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 644
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145455.1e3f01d9
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cache-control: max-age=0
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145455.1e3f03a5
GET

https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cache-control: max-age=0
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1035
x-check-cacheable: YES
cache-control: public, max-age=1305561
date: Tue, 20 Aug 2024 09:17:40 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145460.1e3f4b98
GET

https://th.bing.com/th?id=OSAAS.9C68030720D9D9A395307D2216CB183D&w=72&h=72&c=1&rs=1&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSAAS.9C68030720D9D9A395307D2216CB183D&w=72&h=72&c=1&rs=1&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 200

content-length: 210
content-type: image/png
content-md5: o0RlmAqMVoVqWocyBtKjnQ==
last-modified: Tue, 07 Jul 2020 19:40:55 GMT
etag: 0x8D822ADAA4B55C3
x-ms-request-id: 690425f7-f01e-0091-042e-f0611e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, max-age=429424
expires: Wed, 21 Aug 2024 22:48:51 GMT
akamai-grn: 0.4eba1302.1723851107.d67bf4b9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f58f2
GET

https://www.bing.com/rp/ak5A-kIzM-v9JjRbH7FaoGRYoEw.png

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /rp/ak5A-kIzM-v9JjRbH7FaoGRYoEw.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 544
cache-control: public, max-age=605417
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f63fe
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 394
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f63c7
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:1064,%22SE%22:-1,%22TC%22:-1,%22H%22:5206,%22BP%22:5363,%22CT%22:5368,%22IL%22:6},%22ad%22:[-1,-1,1263,592,1263,4085,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:1064,%22SE%22:-1,%22TC%22:-1,%22H%22:5206,%22BP%22:5363,%22CT%22:5368,%22IL%22:6},%22ad%22:[-1,-1,1263,592,1263,4085,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145181379&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3449&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f63c8
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145460041%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.85%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145460041%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145460050%2C%22Name%22%3A1540%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460050%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460051%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145460041%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.85%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145460041%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145460050%2C%22Name%22%3A1540%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460050%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460051%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f63fc
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460052%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460052%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f63fb
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f63fd
GET

https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 544
cache-control: public, max-age=1171330
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64bf
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 544
cache-control: public, max-age=430276
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c1
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.jvndrtiaEOVmRvEDOmZXigAAAA&w=80&h=80&c=1&vt=10&bgcl=78be48&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.jvndrtiaEOVmRvEDOmZXigAAAA&w=80&h=80&c=1&vt=10&bgcl=78be48&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 209
cache-control: public, max-age=2523848
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 209
cache-control: public, max-age=1393659
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c8
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.KbeMg52rLquVkIcFGr7OUQHaEK&w=174&h=104&c=7&bgcl=2141e8&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.KbeMg52rLquVkIcFGr7OUQHaEK&w=174&h=104&c=7&bgcl=2141e8&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6807
x-check-cacheable: YES
cache-control: public, max-age=98765
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64cd
GET

https://th.bing.com/th?id=OIP.4VKAFnr0dKsQLz2GC2lnBQHaEd&w=162&h=104&c=7&bgcl=b1ec58&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.4VKAFnr0dKsQLz2GC2lnBQHaEd&w=162&h=104&c=7&bgcl=b1ec58&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2295
x-check-cacheable: YES
cache-control: public, max-age=3848001
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d0
GET

https://th.bing.com/th?id=OIP.U8Hd96ZtEFj2o1se6FW-7gAAAA&w=132&h=104&c=7&bgcl=279dac&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.U8Hd96ZtEFj2o1se6FW-7gAAAA&w=132&h=104&c=7&bgcl=279dac&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3775
x-check-cacheable: YES
cache-control: public, max-age=524117
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64cc
GET

https://th.bing.com/th?id=OIP.VgiPs6SuajgtWEZDPOYNzAHaFd&w=134&h=104&c=7&bgcl=98e8b5&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.VgiPs6SuajgtWEZDPOYNzAHaFd&w=134&h=104&c=7&bgcl=98e8b5&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 544
cache-control: public, max-age=733497
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 209
cache-control: public, max-age=1407607
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d7
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 856
cache-control: public, max-age=1582827
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64db
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.5huSr-25R36nE1gCL_70uwHaEK&w=80&h=80&c=1&vt=10&bgcl=0f7f96&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.5huSr-25R36nE1gCL_70uwHaEK&w=80&h=80&c=1&vt=10&bgcl=0f7f96&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 769
cache-control: public, max-age=2066306
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64dc
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.rEHP8vZGu1aLSAoGIVkHjQHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OVP.rEHP8vZGu1aLSAoGIVkHjQHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1014
cache-control: public, max-age=1238862
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64dd
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.bUrLEH1zIRbH44gN5ZbaZAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OVP.bUrLEH1zIRbH44gN5ZbaZAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1677
cache-control: public, max-age=815994
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64de
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.mstIxOVSMDameJHNxmhPbwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OVP.mstIxOVSMDameJHNxmhPbwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1564
cache-control: public, max-age=978837
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64df
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.j4VIRkxZLELaHzcP9JjsBgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OVP.j4VIRkxZLELaHzcP9JjsBgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1809
cache-control: public, max-age=1407777
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64e0
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.mKFFDnjaXvjdnrVyq8ELbgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OVP.mKFFDnjaXvjdnrVyq8ELbgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7517
cache-control: public, max-age=431351
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64e1
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Visual+Studio+Download+Windows+10&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?q=Visual+Studio+Download+Windows+10&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1239
x-check-cacheable: YES
cache-control: public, max-age=3848005
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d4
GET

https://th.bing.com/th?q=Visual+Studio+Installation&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?q=Visual+Studio+Installation&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 692
x-check-cacheable: YES
cache-control: public, max-age=2462004
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d9
GET

https://th.bing.com/th?q=Visual+Studio+Windows+App&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?q=Visual+Studio+Windows+App&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6990
x-check-cacheable: YES
cache-control: public, max-age=1063661
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64cb
GET

https://th.bing.com/th?q=Visual+Studio+Free&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?q=Visual+Studio+Free&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f64e8
GET

https://th.bing.com/th?q=Visual+Studio+for+Windows+10&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?q=Visual+Studio+for+Windows+10&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1722
cache-control: public, max-age=1209594
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c4
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1410
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP._jzb5pbqlfzCQMlopKB1bAAAAA&w=80&h=80&c=1&vt=10&bgcl=3ce1f1&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP._jzb5pbqlfzCQMlopKB1bAAAAA&w=80&h=80&c=1&vt=10&bgcl=3ce1f1&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1508
cache-control: public, max-age=1209565
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1410
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d8
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.5huSr-25R36nE1gCL_70uwHaEK&w=80&h=80&c=1&vt=10&bgcl=15a788&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.5huSr-25R36nE1gCL_70uwHaEK&w=80&h=80&c=1&vt=10&bgcl=15a788&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3695
cache-control: public, max-age=1209560
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c3
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.dcbba1df-d660-42ec-a587-4f58db3a0d71&w=18&h=18&o=6&pid=AdsPlus

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.dcbba1df-d660-42ec-a587-4f58db3a0d71&w=18&h=18&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1759
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c0
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1982
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.430a0715-1fb0-4aa1-9ba4-b59518dbd57b&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.430a0715-1fb0-4aa1-9ba4-b59518dbd57b&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f6519
GET

https://th.bing.com/th?id=OSK.aa79021de5b343c2e7f816cfecc3e4a8&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSK.aa79021de5b343c2e7f816cfecc3e4a8&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 17500
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45f35331b4cc6b949828fd55b39dd
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-4BeVsTlMJueVb8qWq5oY02Se2UbxmTORqgtJ8Wa80tg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f64ea
GET

https://th.bing.com/th?id=OSK.f20f011c967ff1de1934b279cb7bbc14&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSK.f20f011c967ff1de1934b279cb7bbc14&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1347
cache-control: public, max-age=5184000
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64cf
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.bt-mwPNoOhxcWcHX5f59Qu2enIr3-zmRB25NTkzPgNQ&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSK.bt-mwPNoOhxcWcHX5f59Qu2enIr3-zmRB25NTkzPgNQ&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2346
cache-control: public, max-age=5183943
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d1
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1627
x-check-cacheable: YES
cache-control: public, max-age=4927746
date: Tue, 20 Aug 2024 09:17:41 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64d3
GET

https://th.bing.com/th?id=OSK.d8b484f1a0901047648b7a7f78785658&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSK.d8b484f1a0901047648b7a7f78785658&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145461.1e3f64e9
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2221%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f65ca
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f65df
GET

https://www.bing.com/images/sbi?mmasync=1&ig=A7A59F578B63451A9FD978E5BBB10415&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /images/sbi?mmasync=1&ig=A7A59F578B63451A9FD978E5BBB10415&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3262
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:17:42 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64c2
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460055%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460056%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460060%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A6102%2C%22time%22%3A6105%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145460288%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460055%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460056%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460060%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A6102%2C%22time%22%3A6105%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145460288%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 837
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45f3652094920b3d65324ca2f7bac
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-l0TrS6UfxMxWnPEolYBZaTCvFUfCaK7eybL6iFh8tbk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45f3652094920b3d65324ca2f7bac|AFD:66c45f3652094920b3d65324ca2f7bac|2024-08-20T09:17:42.030Z
date: Tue, 20 Aug 2024 09:17:42 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f65e0
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A6105%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145460288%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A6105%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145460288%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 37669
cache-control: public, max-age=1209561
date: Tue, 20 Aug 2024 09:17:42 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64ca
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A6106%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145460289%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A6106%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145460289%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 1037
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45f36de624f219ab92fe07c31b2c6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-eWMEGYUj7i5Zy6QCcx60nhYgKoK63fAibzP7xwb6z+k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45f36de624f219ab92fe07c31b2c6|AFD:66c45f36de624f219ab92fe07c31b2c6|2024-08-20T09:17:42.029Z
date: Tue, 20 Aug 2024 09:17:42 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Wed, 20-Aug-2025 09:17:42 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-08-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f65e1
POST

https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=A7A59F578B63451A9FD978E5BBB10415

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=A7A59F578B63451A9FD978E5BBB10415 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6408
x-check-cacheable: YES
cache-control: public, max-age=244342
date: Tue, 20 Aug 2024 09:17:42 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145461.1e3f64ce
POST

https://www.bing.com/rewardsapp/reportActivity?IG=A7A59F578B63451A9FD978E5BBB10415&IID=SERP.5065&q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /rewardsapp/reportActivity?IG=A7A59F578B63451A9FD978E5BBB10415&IID=SERP.5065&q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 172
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T07:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:13:02.8189334+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=15&RB=0&GB=0&RG=200&RP=12
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f685e
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?BF=MSJ0&IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f685d
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?BF=MSJ1&IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f693f
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum18%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum18%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f6941
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f18%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f18%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4333
cache-control: public, max-age=1805098
date: Tue, 20 Aug 2024 09:17:42 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145462.1e3f6a2c
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145181&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9883
cache-control: public, max-age=1249078
date: Tue, 20 Aug 2024 09:17:42 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145462.1e3f6a2b
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45f2fce04430d955cb36ac4262664%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145460298%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45f2fce04430d955cb36ac4262664%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145460298%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460331%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145460387%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145460387%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145460528%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461009%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45f2fce04430d955cb36ac4262664%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145460298%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45f2fce04430d955cb36ac4262664%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145460298%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460331%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145460387%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145460387%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145460528%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461009%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f6a27
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461009%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461009%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f6a28
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145461010%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145461010%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f6a29
GET

https://th.bing.com/th?id=OSK.a3a020f8149d7e39e1aea30c2ace98ca&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSK.a3a020f8149d7e39e1aea30c2ace98ca&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145462.1e3f6a2a
GET

https://th.bing.com/th?id=OSK.a3a020f8149d7e39e1aea30c2ace98ca&w=102&h=102&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OSK.a3a020f8149d7e39e1aea30c2ace98ca&w=102&h=102&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f92a8
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f92a6
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145461028%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145461028%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f92a2
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f92a5
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f92a1
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45f3862204d28854fe72b4bbb5410
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-F1hOX/SI/lcXuobfH07QfqxK2QBPWsSh26OQL/DixOs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 0773BB2E72744FBA95C0C839AE062768 Ref B: LON601060104023 Ref C: 2024-08-20T09:17:44Z
date: Tue, 20 Aug 2024 09:17:44 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:17:44 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744; domain=.bing.com; expires=Sun, 14-Sep-2025 09:17:44 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f92a4
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 904
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45f38891c4b368103daf9a82299db
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-3UKoM2XlqRS/6QIsbbMH1lhKe4RxaC7sfu/qZIyfUyg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 70F16D31575E48879F68BC52351FD740 Ref B: LON601060107062 Ref C: 2024-08-20T09:17:44Z
date: Tue, 20 Aug 2024 09:17:44 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:17:44 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f92aa
GET

https://www.bing.com/auth/getToken

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /auth/getToken HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f93e1
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.PPT&DATA={%22S%22:5407,%22E%22:6392,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.PPT&DATA={%22S%22:5407,%22E%22:6392,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 75
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45f38622e41cb90f411dc1e07fbbc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-KBXESs434MnA/tdvE33e8n8TU5CYoY3d8rsXLpqazLY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:17:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f93e0
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1724148774563
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145464.1e3f93df
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145461048%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%225884.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145461049%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%226864.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145461049%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145461593%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145461048%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%225884.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145461049%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%226864.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145461049%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145461593%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091303
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145465.1e3f9978
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145463070%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463328%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145463770%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145463070%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463328%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145463770%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145466.1e3fb0c2
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463779%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145463810%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145463810%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463867%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145463977%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463779%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145463810%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145463810%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463867%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145463977%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45f3b894e4964aa3171910004b7e7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-B6hNhEDtwlZMFfH+ir4uMyI7vPqylvlJpX1RjFw5dxw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 567EC85E5700455D836D4B386F5E2A7E Ref B: LON601060103054 Ref C: 2024-08-20T09:17:47Z
content-length: 0
date: Tue, 20 Aug 2024 09:17:47 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:17:47 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145467.1e3fb1cd
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=A7A59F578B63451A9FD978E5BBB10415&ID=SERP,5550.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dc712eb574c26efbfJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTU1MA%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dwindows%2Bvisual%2Bstudio%26u%3Da1aHR0cHM6Ly9hcHBzLm1pY3Jvc29mdC5jb20vZGV0YWlsL1hQRENGSkRLTFpKTFA4P2xhdW5jaD10cnVlJm1vZGU9ZnVsbCZobD1lbi11cyZnbD1nYiZvY2lkPWJpbmd3ZWJzZWFyY2g%26ntb%3D1

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=A7A59F578B63451A9FD978E5BBB10415&ID=SERP,5550.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dc712eb574c26efbfJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTU1MA%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dwindows%2Bvisual%2Bstudio%26u%3Da1aHR0cHM6Ly9hcHBzLm1pY3Jvc29mdC5jb20vZGV0YWlsL1hQRENGSkRLTFpKTFA4P2xhdW5jaD10cnVlJm1vZGU9ZnVsbCZobD1lbi11cyZnbD1nYiZvY2lkPWJpbmd3ZWJzZWFyY2g%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1376
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 22F47399C18C41488F25473A385EB392 Ref B: LON601060103029 Ref C: 2024-08-20T09:17:47Z
date: Tue, 20 Aug 2024 09:17:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145467.1e3fb38c
GET

https://www.bing.com/ck/a?!&&p=c712eb574c26efbfJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTU1MA&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=windows+visual+studio&u=a1aHR0cHM6Ly9hcHBzLm1pY3Jvc29mdC5jb20vZGV0YWlsL1hQRENGSkRLTFpKTFA4P2xhdW5jaD10cnVlJm1vZGU9ZnVsbCZobD1lbi11cyZnbD1nYiZvY2lkPWJpbmd3ZWJzZWFyY2g&ntb=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /ck/a?!&&p=c712eb574c26efbfJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTU1MA&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=windows+visual+studio&u=a1aHR0cHM6Ly9hcHBzLm1pY3Jvc29mdC5jb20vZGV0YWlsL1hQRENGSkRLTFpKTFA4P2xhdW5jaD10cnVlJm1vZGU9ZnVsbCZobD1lbi11cyZnbD1nYiZvY2lkPWJpbmd3ZWJzZWFyY2g&ntb=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145469.1e3fd3da
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 286
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:17:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145469.1e3fd3db
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 24185
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:20 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145560.1e458521
GET

https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145559454%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145559454%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:21 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145561.1e45949c
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 638
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145563.1e45bde1
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 690
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 66c45f9bd85f4b3e9101ef3081f3c3fa
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-n1larOcWAmtHCH+i0/Aa5kK2QCtR9bUkHY+tK74WQx4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: DDFFB255A9D94C0BB063F27C4D305945 Ref B: LON601060107034 Ref C: 2024-08-20T09:19:23Z
content-length: 0
date: Tue, 20 Aug 2024 09:19:23 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:19:23 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145563.1e45c2b1
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=A7A59F578B63451A9FD978E5BBB10415&ID=SERP,5747.1&url=%2Fsearch%3Fq%3Dvisual%2Bstudio%2Bdownload%26filters%3Ddtbk%3A%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%253d%22%2Bsid%3A%22752323e2-57bd-15b1-a603-3b8667360a80%22%26FORM%3DDEPNAV

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=A7A59F578B63451A9FD978E5BBB10415&ID=SERP,5747.1&url=%2Fsearch%3Fq%3Dvisual%2Bstudio%2Bdownload%26filters%3Ddtbk%3A%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%253d%22%2Bsid%3A%22752323e2-57bd-15b1-a603-3b8667360a80%22%26FORM%3DDEPNAV HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:24 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145564.1e45d62b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 679
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:18:24 GMT
vary: Accept-Encoding
x-eventid: 66c45f9c97b444f489759d2010b2ac48
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-eMw1FPZaxXXKE3WaNEFseDf30YXD9/xQRX1YJo/t2xs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:19:24 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145564.1e45d62c
set-cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX66h8lyRAQAAEX0Vbxg2kaZDrqOzo4GD2d+Ot0mDv/XDIRcYu1U4FjnMZPM4xfNkWlCoSNz/5x58bB1MP6tiQ/nmfGaBd/k+c6UKewuffkB5WZLV0I35dQeRXsn6l29di6dYcbOtZarD4qa5YUNwJYo1iL2cmhhXrBy3cSGev9F6+V3S0mUXBaZR1uhM5ycQ5UZxaX5FLyD2/nsBPlQI+qVh58p9fQsVAK84WwsUtr5blcds4c0EDA==~1; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:29 GMT; Max-Age=6425; Secure
GET

https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&sid=044E27407A3C6EFA0F8B33A17B066F22&format=snrjson&jsoncbid=0

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&sid=044E27407A3C6EFA0F8B33A17B066F22&format=snrjson&jsoncbid=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0SZ8lyRAQAAg9ITbxg6QrfD8Zp0LUZtVxBpDeSQqHajG03KdpNjO3ky73swzSc3fhIFXQ/FThfELussF56X2DvDAGiYvGTwGJPWTY+hKoRigi7McnQXW5jKXXPzXBUllQUkvfYbydqdMXJcxCFJqu6kSxhjfD4ujhfRDsqD74mYx1kb4zCvmWQAgJMcCsnT37jmmX5IiulzLX1z/FaAYoupzqhTKWz711VOVxT2fK9R48ZYQ1SU2w==~1
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145584.1e472820
GET

https://www.bing.com/fd/ls/l?IG=A389B43B874A461A98FE0B7A214B01F1&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.AjaxSerpError%22,%22FID%22:%22CI%22,%22Name%22:%22Ajax%22,%22Meta%22:%22RK:SearchForm,Identity,scopebar%20SK:%20U:/search%3Fq%3Dvisual+studio+download%26filters%3Ddtbk%3A%2522MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%253d%2522+sid%3A%2522752323e2-57bd-15b1-a603-3b8667360a80%2522%26FORM%3DDEPNAV%26sid%3D044E27407A3C6EFA0F8B33A17B066F22%26format%3Dsnrjson%26jsoncbid%3D0%22,%22Text%22:%22FailedRequest70%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A389B43B874A461A98FE0B7A214B01F1&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.AjaxSerpError%22,%22FID%22:%22CI%22,%22Name%22:%22Ajax%22,%22Meta%22:%22RK:SearchForm,Identity,scopebar%20SK:%20U:/search%3Fq%3Dvisual+studio+download%26filters%3Ddtbk%3A%2522MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%253d%2522+sid%3A%2522752323e2-57bd-15b1-a603-3b8667360a80%2522%26FORM%3DDEPNAV%26sid%3D044E27407A3C6EFA0F8B33A17B066F22%26format%3Dsnrjson%26jsoncbid%3D0%22,%22Text%22:%22FailedRequest70%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX66h8lyRAQAAEX0Vbxg2kaZDrqOzo4GD2d+Ot0mDv/XDIRcYu1U4FjnMZPM4xfNkWlCoSNz/5x58bB1MP6tiQ/nmfGaBd/k+c6UKewuffkB5WZLV0I35dQeRXsn6l29di6dYcbOtZarD4qa5YUNwJYo1iL2cmhhXrBy3cSGev9F6+V3S0mUXBaZR1uhM5ycQ5UZxaX5FLyD2/nsBPlQI+qVh58p9fQsVAK84WwsUtr5blcds4c0EDA==~1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145585.1e473a97
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 408
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX66h8lyRAQAAEX0Vbxg2kaZDrqOzo4GD2d+Ot0mDv/XDIRcYu1U4FjnMZPM4xfNkWlCoSNz/5x58bB1MP6tiQ/nmfGaBd/k+c6UKewuffkB5WZLV0I35dQeRXsn6l29di6dYcbOtZarD4qa5YUNwJYo1iL2cmhhXrBy3cSGev9F6+V3S0mUXBaZR1uhM5ycQ5UZxaX5FLyD2/nsBPlQI+qVh58p9fQsVAK84WwsUtr5blcds4c0EDA==~1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145585.1e473b09
GET

https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX66h8lyRAQAAEX0Vbxg2kaZDrqOzo4GD2d+Ot0mDv/XDIRcYu1U4FjnMZPM4xfNkWlCoSNz/5x58bB1MP6tiQ/nmfGaBd/k+c6UKewuffkB5WZLV0I35dQeRXsn6l29di6dYcbOtZarD4qa5YUNwJYo1iL2cmhhXrBy3cSGev9F6+V3S0mUXBaZR1uhM5ycQ5UZxaX5FLyD2/nsBPlQI+qVh58p9fQsVAK84WwsUtr5blcds4c0EDA==~1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Tue, 20 Aug 2024 09:18:45 GMT
vary: Accept-Encoding
x-eventid: 66c45fb1cb5042e7a6b6549553487387
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-idV5NoX2FYrcqp1jZhnA5XnalQcXEVtBfO3wCvo68w0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Tue, 20 Aug 2024 09:19:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145585.1e473ae4
set-cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1; Domain=.bing.com; Path=/; Expires=Tue, 20 Aug 2024 11:06:29 GMT; Max-Age=6404; Secure
GET

https://www.bing.com/fd/ls/l?IG=A389B43B874A461A98FE0B7A214B01F1&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22A%22,%22FC%22:10,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:-1,%22BP%22:-1,%22CT%22:20177,%22IL%22:42},%22ad%22:[-1,-1,1263,592,1263,4085,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=A389B43B874A461A98FE0B7A214B01F1&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22A%22,%22FC%22:10,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:-1,%22BP%22:-1,%22CT%22:20177,%22IL%22:42},%22ad%22:[-1,-1,1263,592,1263,4085,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX66h8lyRAQAAEX0Vbxg2kaZDrqOzo4GD2d+Ot0mDv/XDIRcYu1U4FjnMZPM4xfNkWlCoSNz/5x58bB1MP6tiQ/nmfGaBd/k+c6UKewuffkB5WZLV0I35dQeRXsn6l29di6dYcbOtZarD4qa5YUNwJYo1iL2cmhhXrBy3cSGev9F6+V3S0mUXBaZR1uhM5ycQ5UZxaX5FLyD2/nsBPlQI+qVh58p9fQsVAK84WwsUtr5blcds4c0EDA==~1
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145586.1e47574e
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:12,%22SE%22:-1,%22TC%22:-1,%22H%22:45,%22BP%22:52,%22CT%22:53,%22IL%22:9},%22ad%22:[-1,-1,1263,592,1263,3818,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:12,%22SE%22:-1,%22TC%22:-1,%22H%22:45,%22BP%22:52,%22CT%22:53,%22IL%22:9},%22ad%22:[-1,-1,1263,592,1263,3818,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145587.1e475bd1
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 357
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4085&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145587.1e47668a
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145585989%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22200%22%2C%22Downlink%22%3A%221.2%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145585989%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145585996%2C%22Name%22%3A1081%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585996%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585997%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145585989%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22200%22%2C%22Downlink%22%3A%221.2%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145585989%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145585996%2C%22Name%22%3A1081%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585996%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585997%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145587.1e476688
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585997%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585997%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145587.1e476689
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4729
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e476d83
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.EnDOdxuXnE61zpljNj-lZAAAAA&w=217&h=104&c=7&bgcl=5b1e0d&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.EnDOdxuXnE61zpljNj-lZAAAAA&w=217&h=104&c=7&bgcl=5b1e0d&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3507
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e476d84
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.uDGAiodECFzNp03dfDr6hgAAAA&w=194&h=104&c=7&bgcl=5cca3a&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.uDGAiodECFzNp03dfDr6hgAAAA&w=194&h=104&c=7&bgcl=5cca3a&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2899
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e476d85
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP._jzb5pbqlfzCQMlopKB1bAAAAA&w=193&h=104&c=7&bgcl=1441ee&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP._jzb5pbqlfzCQMlopKB1bAAAAA&w=193&h=104&c=7&bgcl=1441ee&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 12337
x-check-cacheable: YES
cache-control: public, max-age=1143822
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e476eff
GET

https://th.bing.com/th?id=OVP.ubNmNIVEBEXhg3FT9fHrVwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OVP.ubNmNIVEBEXhg3FT9fHrVwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1745
cache-control: public, max-age=1209551
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e476f3a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.U8Hd96ZtEFj2o1se6FW-7gAAAA&w=131&h=104&c=7&bgcl=4402d2&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.U8Hd96ZtEFj2o1se6FW-7gAAAA&w=131&h=104&c=7&bgcl=4402d2&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1452
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e476fae
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.-ZxhtbZ49ql8NNMaRUiqqQHaD6&w=185&h=104&c=7&bgcl=a1ad8c&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.-ZxhtbZ49ql8NNMaRUiqqQHaD6&w=185&h=104&c=7&bgcl=a1ad8c&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1419
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e47700c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.2-zqXI5a8WXOrmDL7uoEiAAAAA&w=147&h=104&c=7&bgcl=73477d&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.2-zqXI5a8WXOrmDL7uoEiAAAAA&w=147&h=104&c=7&bgcl=73477d&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1734
cache-control: public, max-age=1302204
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e4770c0
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.qLn2I_LVZ6W1nSinQMwwhwAAAA&w=139&h=104&c=7&bgcl=5a5ae5&r=0&o=6&pid=13.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.qLn2I_LVZ6W1nSinQMwwhwAAAA&w=139&h=104&c=7&bgcl=5a5ae5&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2310
cache-control: public, max-age=1209597
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e47709a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.6b55ac23-7def-44f4-a5a7-84eb4cbc1c19&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.6b55ac23-7def-44f4-a5a7-84eb4cbc1c19&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1734
cache-control: public, max-age=1301772
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e47716f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.Y-Uv2tsTvjrGDcR3_T-xXgAAAA&w=80&h=80&c=1&vt=10&bgcl=e2da03&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.Y-Uv2tsTvjrGDcR3_T-xXgAAAA&w=80&h=80&c=1&vt=10&bgcl=e2da03&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1691
cache-control: public, max-age=1209587
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e477151
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.6b55ac23-7def-44f4-a5a7-84eb4cbc1c19&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.6b55ac23-7def-44f4-a5a7-84eb4cbc1c19&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1193
cache-control: public, max-age=1291716
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e477221
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.Y-Uv2tsTvjrGDcR3_T-xXgAAAA&w=80&h=80&c=1&vt=10&bgcl=85d177&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.Y-Uv2tsTvjrGDcR3_T-xXgAAAA&w=80&h=80&c=1&vt=10&bgcl=85d177&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1691
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e4771e7
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1566
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e477278
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.9AQXchgUGb_ycZecnAtsOQHaDt&w=80&h=80&c=1&vt=10&bgcl=4254e8&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.9AQXchgUGb_ycZecnAtsOQHaDt&w=80&h=80&c=1&vt=10&bgcl=4254e8&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1193
cache-control: public, max-age=1639313
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e4773de
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1193
cache-control: public, max-age=601137
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e4773e6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.whHZi5Q0EiiQErhkRqpXVQHaFx&w=80&h=80&c=1&vt=10&bgcl=7261d1&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OIP.whHZi5Q0EiiQErhkRqpXVQHaFx&w=80&h=80&c=1&vt=10&bgcl=7261d1&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1574
cache-control: public, max-age=1209600
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e4773e5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 209
cache-control: public, max-age=1304004
date: Tue, 20 Aug 2024 09:19:48 GMT
x-cache: TCP_MEM_HIT from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145588.1e47749d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145588.1e477533
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2222%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2222%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145588.1e47753d
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 17498
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c45fb43fe24ac0b7c19ff509467685
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-wTfEMImPYpZ/uFYfxZmBR4ce0kwWts9DkoN+hoaJjCg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:19:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145588.1e4775f0
GET

https://www.bing.com/images/sbi?mmasync=1&ig=43F7C5C923124739B552B6F0D3522EDA&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /images/sbi?mmasync=1&ig=43F7C5C923124739B552B6F0D3522EDA&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 839
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45fb4b7dd47468a7046dbb52e195d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-PrHDjkIXZC3t1s96LG8gsurRABXP1WYwy5hrC76R8a0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45fb4b7dd47468a7046dbb52e195d|AFD:66c45fb4b7dd47468a7046dbb52e195d|2024-08-20T09:19:48.927Z
date: Tue, 20 Aug 2024 09:19:48 GMT
set-cookie: _C_ETH=1; expires=Mon, 19 Aug 2024 09:19:48 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145588.1e47761e
POST

https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=43F7C5C923124739B552B6F0D3522EDA

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=43F7C5C923124739B552B6F0D3522EDA HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1032
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45fb4627046559d777e14a452e9fb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-mM2YPYkmBB2mOT82fBeiHaDY07BwThx/k71H9Te8EWs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 66c45fb4627046559d777e14a452e9fb|AFD:66c45fb4627046559d777e14a452e9fb|2024-08-20T09:19:48.942Z
date: Tue, 20 Aug 2024 09:19:48 GMT
set-cookie: _C_ETH=1; expires=Mon, 19 Aug 2024 09:19:48 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Wed, 20-Aug-2025 09:19:48 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-08-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145588.1e477652
POST

https://www.bing.com/rewardsapp/reportActivity?IG=43F7C5C923124739B552B6F0D3522EDA&IID=SERP.5065&q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /rewardsapp/reportActivity?IG=43F7C5C923124739B552B6F0D3522EDA&IID=SERP.5065&q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70 HTTP/2.0
host: www.bing.com
content-length: 282
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:17:42.0555267+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=18&RB=0&GB=0&RG=200&RP=15&h5comp=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e4778e6
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum18%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum18%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e4778fe
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f18%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f18%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e4778fd
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: dsc=order=Video
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477a45
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477a54
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586004%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586005%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586011%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2266c45fb1cb5042e7a6b6549553487387%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145587708%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45fb1cb5042e7a6b6549553487387%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145587708%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587731%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145587781%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145587781%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145587983%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145587985%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586004%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586005%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586011%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2266c45fb1cb5042e7a6b6549553487387%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145587708%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45fb1cb5042e7a6b6549553487387%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145587708%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587731%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145587781%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145587781%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145587983%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145587985%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477a51
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145587985%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145587985%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45fb599a54b64802a61e7bf4ba7aa
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-xBwe34gNs6+5TGsMbyBWk5qKa9zu4S4gh82I/+VncOg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 1851132FF2474C4E8750A1A4ECE62EAD Ref B: LON601060102025 Ref C: 2024-08-20T09:19:49Z
date: Tue, 20 Aug 2024 09:19:49 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:19:49 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949; domain=.bing.com; expires=Sun, 14-Sep-2025 09:19:49 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477a24
GET

https://www.bing.com/auth/getToken

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /auth/getToken HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
content-length: 870
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 66c45fb5bae641a7bffd11529e24680a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-0QGTk+XWi1iNfR4a09S9vOl+TVDEiYr+qiBIe3ieQNk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 1B0642F662C741B1B6C9A48DBBC44AC7 Ref B: LON601060105060 Ref C: 2024-08-20T09:19:49Z
date: Tue, 20 Aug 2024 09:19:49 GMT
set-cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE; expires=Sun, 14-Sep-2025 09:19:49 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477a52
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145587987%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145587987%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477b59
GET

https://th.bing.com/th?id=OVP.3bXxBheOithd1g-8Gp_gCwEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /th?id=OVP.3bXxBheOithd1g-8Gp_gCwEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091744
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477b6e
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 11895
x-check-cacheable: YES
cache-control: public, max-age=377744
date: Tue, 20 Aug 2024 09:19:49 GMT
x-cache: TCP_MISS from a95-101-129-196.deploy.akamaitechnologies.com (AkamaiGHost/11.6.1.1-c253c574b3c2af32d59c15ea70b89e46) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c481655f.1724145589.1e477b47
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e477c67
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145589.1e4783eb
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145590.1e478951
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145590.1e47894f
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.PPT&DATA={%22S%22:959,%22E%22:2966,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.PPT&DATA={%22S%22:959,%22E%22:2966,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145590.1e47894e
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A4031%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A4031%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145590.1e478950
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 22623
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-length: 75
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 66c45fb7e1e142d79970e65b8526a077
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-G8qPJ4pBLG9xA6wKj8FZJornE2SngmbN7kqaS45osi0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:19:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145591.1e479717
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: ipv6=hit=1724149062818
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145591.1e4797bf
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145591.1e4797f6
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145591.1e4797c2
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145588022%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222028%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145588023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%224037%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145588023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588103%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145588022%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222028%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145588023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%224037%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145588023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588103%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145592.1e47ac35
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145588163%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145588164%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145588163%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145588164%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145594.1e47c46b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.129.209:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 643
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:19:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c481655f.1724145594.1e47c471
GET

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145591000%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145591537%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

msedge.exe

Remote address:

95.101.129.209:443

Request

GET /fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145591000%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145591537%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986
DNS

209.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

209.129.101.95.in-addr.arpa

IN PTR

Response

209.129.101.95.in-addr.arpa

IN PTR

a95-101-129-209deploystaticakamaitechnologiescom
DNS

209.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

209.129.101.95.in-addr.arpa

IN PTR

Response

209.129.101.95.in-addr.arpa

IN PTR

a95-101-129-209deploystaticakamaitechnologiescom
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.219

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.208

e86303.dscx.akamaiedge.net

IN A

95.101.129.211

e86303.dscx.akamaiedge.net

IN A

95.101.129.209

e86303.dscx.akamaiedge.net

IN A

95.101.129.202

e86303.dscx.akamaiedge.net

IN A

95.101.129.224

e86303.dscx.akamaiedge.net

IN A

95.101.129.201
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.146

e86303.dscx.akamaiedge.net

IN A

95.101.129.235

e86303.dscx.akamaiedge.net

IN A

95.101.129.201

e86303.dscx.akamaiedge.net

IN A

95.101.129.202

e86303.dscx.akamaiedge.net

IN A

95.101.129.209

e86303.dscx.akamaiedge.net

IN A

95.101.129.194

e86303.dscx.akamaiedge.net

IN A

95.101.129.195

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.208
GET

https://r.bing.com/rp/W6JA1dqYURoDF58Us-rKOCztnvE.br.js

msedge.exe

Remote address:

95.101.129.146:443

Request

GET /rp/W6JA1dqYURoDF58Us-rKOCztnvE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 259
content-type: application/x-javascript; charset=utf-8
content-encoding: br
content-md5: jDpfrkHEWPKiRt+7YgCBFw==
last-modified: Wed, 17 Aug 2022 05:27:06 GMT
etag: 0x8DA8011202AA3B8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3582a165-701e-006b-3dce-ae8358000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=47914
expires: Tue, 20 Aug 2024 22:36:15 GMT
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.dc81655f.1724145461.3a1e83de
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

msedge.exe

Remote address:

95.101.129.146:443

Request

GET /rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: sRUJhba0nGKMvqYh9Hu4Bw==
last-modified: Tue, 21 Mar 2023 02:32:28 GMT
etag: 0x8DB29B4838AA17F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8cbd88c9-101e-0052-35b2-e97844000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 597
vary: Accept-Encoding
cache-control: public, no-transform, max-age=199890
expires: Thu, 22 Aug 2024 16:49:11 GMT
date: Tue, 20 Aug 2024 09:17:41 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.dc81655f.1724145461.3a1e83dd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
DNS

146.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.129.101.95.in-addr.arpa

IN PTR

Response

146.129.101.95.in-addr.arpa

IN PTR

a95-101-129-146deploystaticakamaitechnologiescom
DNS

services.bingapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

services.bingapis.com

IN A

Response

services.bingapis.com

IN CNAME

services-bingapis-com.e-0001.e-msedge.net

services-bingapis-com.e-0001.e-msedge.net

IN CNAME

e-0001.e-msedge.net

e-0001.e-msedge.net

IN A

13.107.5.80
DNS

services.bingapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

services.bingapis.com

IN A
GET

https://services.bingapis.com/favicon/?url=visualstudio.microsoft.com

msedge.exe

Remote address:

13.107.5.80:443

Request

GET /favicon/?url=visualstudio.microsoft.com HTTP/2.0
host: services.bingapis.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=86400
content-length: 557
content-type: image/png
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 06C47ACE2CE24266BA1C5E3FDE9807A1 Ref B: AMS04EDGE3616 Ref C: 2024-08-20T09:17:42Z
date: Tue, 20 Aug 2024 09:17:42 GMT
DNS

89.33.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

89.33.18.104.in-addr.arpa

IN PTR

Response
DNS

89.33.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

89.33.18.104.in-addr.arpa

IN PTR
DNS

apps.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

apps.microsoft.com

IN A

Response

apps.microsoft.com

IN CNAME

web-store-eyfkgzgudfgwftdc.z01.azurefd.net

web-store-eyfkgzgudfgwftdc.z01.azurefd.net

IN CNAME

star-azurefd-prod.trafficmanager.net

star-azurefd-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
GET

https://apps.microsoft.com/detail/XPDCFJDKLZJLP8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /detail/XPDCFJDKLZJLP8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 301

date: Tue, 20 Aug 2024 09:17:49 GMT
content-length: 0
location: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
x-powered-by: ASP.NET
x-azure-ref: 20240820T091749Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qa9
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
GET

https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch HTTP/2.0
host: apps.microsoft.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:49 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=10800
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: evisa89JsUeuV+BV.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091749Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qav
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
GET

https://apps.microsoft.com/assets/js/index-ec1cd41b.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/index-ec1cd41b.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:49 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee7066388c36"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: O3WPRn4jbU+sDyzE.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091749Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qbm
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/clarity.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /clarity.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:49 GMT
content-type: text/javascript
content-length: 315
cache-control: public, max-age=3600
etag: "1daee6fc550363b"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: Lc4tw2I3v0STzPN9.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091749Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qbr
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/js/index-d961e0b8.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/index-d961e0b8.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663eb7db"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: umLKTRbP7kWnEMG2.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qfm
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/settings/flags?gl=GB&hl=en-us&sessionId= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: application/json; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: gKSV9J1K5U6D0n0E.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgc
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
GET

https://apps.microsoft.com/api/Products/ZeroStateSearch?gl=GB&hl=en-us

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/Products/ZeroStateSearch?gl=GB&hl=en-us HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663f0c07"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: VxuZHM2jeEGTeuY5.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgd
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/product-details-ad60d454.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/product-details-ad60d454.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ef783"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: x/iwvNfVwEOhsrrT.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qge
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/repeat-461b304a.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/repeat-461b304a.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663f3472"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: /HdYorxwoECUI5IR.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgf
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/auto-complete-app-search-caee51e5.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/auto-complete-app-search-caee51e5.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663e6d5a"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: CT8yMYlGiEeQV/wm.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgg
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.W3CH77FZ-402eb63b.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.W3CH77FZ-402eb63b.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
content-length: 1004
cache-control: public,max-age=31536000,immutable
etag: "1daee70663ef1ec"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 7lNhR42K9Uifg8us.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgh
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/js/style-map-e0938f8f.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/style-map-e0938f8f.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
content-length: 100
cache-control: public,max-age=31536000,immutable
etag: "1daee70663ef264"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: erUpoPrnL0qrsHM7.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgk
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/js/chunk.5SKBN5CP-e978556d.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.5SKBN5CP-e978556d.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ef940"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 79YVzTYXSU60+piy.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgm
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.DBG7W4GS-98d16312.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.DBG7W4GS-98d16312.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
content-length: 286
cache-control: public,max-age=31536000,immutable
etag: "1daee70663ef31e"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 0IZnPgCreE+xTi62.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgn
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/js/css-function-b0fa60eb.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/css-function-b0fa60eb.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663e9e75"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: eh4EiyDonEGsrfZ6.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgp
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.5IDXW3BB-62032bcb.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.5IDXW3BB-62032bcb.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ed670"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: UY419j3tQk6Ypqnp.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgq
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/image-helper-554340db.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/image-helper-554340db.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
content-length: 499
cache-control: public,max-age=31536000,immutable
etag: "1daee70663ef3f3"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 4YGyy8c4rUmiyMU9.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgr
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/js/prefers-themes-observer-d1f54912.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/prefers-themes-observer-d1f54912.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663edb33"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: qDrU+4VmL0S6BrSX.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgs
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.WYDJ5QAQ-b4acfa0f.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.WYDJ5QAQ-b4acfa0f.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ef4d1"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: Zm6koh8T9k+50QZk.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgt
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.LXDTFLWU-e9d178e0.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.LXDTFLWU-e9d178e0.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ef7e9"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: n9XJG9kYRkOXdqLy.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgu
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.F5JVBNK3-59205cd6.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.F5JVBNK3-59205cd6.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ef6a7"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 91318s0kf0m+nEgM.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgv
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.LHI6QEL2-b2745246.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.LHI6QEL2-b2745246.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663eb17e"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 81bpP9B4NUWh3UlD.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgw
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.BS5AOUMT-ed5e65bb.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.BS5AOUMT-ed5e65bb.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663efa4b"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: xFRJkTriCU+P4CPB.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgx
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/spacing.styles-69f11dc0.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/spacing.styles-69f11dc0.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663efb7e"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: q/N3IzmAbU+nIJS8.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgy
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/video-player-7467d0b6.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/video-player-7467d0b6.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ee3b7"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: uDp3E8tRZk+kPCX9.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgz
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/paged-list-5d80a6a7.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/paged-list-5d80a6a7.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663f7a8b"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: TyJMEoCNykKeAPZl.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qh0
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/product-collection-4cc1c6d0.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/product-collection-4cc1c6d0.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ea590"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 4zGvuzNMZkaDu2Cb.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qh1
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/nav-bar-e8d79a0e.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/nav-bar-e8d79a0e.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: text/javascript
content-length: 352
cache-control: public,max-age=31536000,immutable
etag: "1daee70663ef360"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: v/EBEPQNBkayajAS.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qh2
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/js/collection-types-62834e09.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/collection-types-62834e09.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: application/json; charset=utf-8
cache-control: no-store
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: XGT7PGZSYECVMxRy.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011qgb
x-fd-int-roxy-purgeid: 0
x-cache: PRIVATE_NOSTORE
GET

https://apps.microsoft.com/assets/js/header-9cd4b3b7.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/header-9cd4b3b7.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663efa71"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: moVo1xwuGEaVNz4r.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfe
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/footer-menu-a2119a2b.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/footer-menu-a2119a2b.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663eddaa"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: E91upKdeU0KmWtZE.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sff
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/chunk.YVAJSRTS-a6bb4b7c.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/chunk.YVAJSRTS-a6bb4b7c.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663eec2e"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: rLpFzmyrTEeP2KQQ.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfg
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/language-selector-dialog-2991d89d.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/language-selector-dialog-2991d89d.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663efc1d"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: naLfMIrBqESWSjGf.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfh
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/api/ProductsDetails/GetPromoProductDetailsById/xpdcfjdklzjlp8?gl=GB&hl=en-us

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/ProductsDetails/GetPromoProductDetailsById/xpdcfjdklzjlp8?gl=GB&hl=en-us HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ee076"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: IRhLDrDhYEuN525G.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfm
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/system-requirements-a43aa69e.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/system-requirements-a43aa69e.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/css
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663eff55"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: Ezap7AF7bUSnWxxc.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfn
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/index-d0ec2dcd.css

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/index-d0ec2dcd.css HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663eeb97"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: bBw/ZF2CZ0S6h9pd.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfp
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/alert-service-5e142f4d.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/alert-service-5e142f4d.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663e6d7c"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: D/rGyr9qgEu20D4d.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfq
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/additional-info-c639abf9.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/additional-info-c639abf9.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: image/svg+xml
content-length: 316
cache-control: public, max-age=2592000
etag: "1daee6fc550363c"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: xxSBgKZ/nEW6OsFO.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfr
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/arrow-up-short.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/arrow-up-short.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: application/json; charset=utf-8
cache-control: public,max-age=43200
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: /v+hz2fO90CKb4lZ.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sfk
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
GET

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/settings/flags?gl=GB&hl=en-us&sessionId= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: application/json; charset=utf-8
cache-control: public,max-age=604800
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: S/wbR04gi0GaDoKe.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sg2
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
GET

https://apps.microsoft.com/api/Reco/GetRelatedProductsList/xpdcfjdklzjlp8?gl=GB&hl=en-us&noItems=30&pgNo=1&productType=Application&filteredCategories=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/Reco/GetRelatedProductsList/xpdcfjdklzjlp8?gl=GB&hl=en-us&noItems=30&pgNo=1&productType=Application&filteredCategories= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: image/svg+xml
content-length: 291
cache-control: public, max-age=2592000
etag: "1daee6fc5503623"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: mnLqvadmUEm6pkpL.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sg3
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/chevron-left.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/chevron-left.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: image/svg+xml
content-length: 293
cache-control: public, max-age=2592000
etag: "1daee6fc5503625"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: J6RB7RQqAk+EcgZg.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sg4
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/chevron-right.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/chevron-right.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663faf28"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: NoQ7PDO0bUKMwrxL.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sgc
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/applicationinsights-web-9ad09b9c.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/applicationinsights-web-9ad09b9c.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663e156c"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: SSFFHnQ6x0yETxNY.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sgd
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/InstrumentHooks-cd565348.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/InstrumentHooks-cd565348.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ee67c"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: j9Vh93umrUaFv9Gq.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sge
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/applicationinsights-core-js-9783d46c.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/applicationinsights-core-js-9783d46c.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663c252a"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: wFdKldsGbUmHn5gV.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001cg000000011sgf
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/Index-cbed7ffc.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/Index-cbed7ffc.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/js/color-worker-bb651d13.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/color-worker-bb651d13.js HTTP/2.0
host: apps.microsoft.com
origin: https://apps.microsoft.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: worker
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/search.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/search.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/js/auth-control-7ace791a.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/auth-control-7ace791a.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/microsoft-logo-dark-1.png

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/microsoft-logo-dark-1.png HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/microsoft-logo-dark-2.png

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/microsoft-logo-dark-2.png HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/light-logo-32x32.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/light-logo-32x32.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/box-seam.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/box-seam.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/bookmark.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/bookmark.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/shield.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/shield.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/chat-text.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/chat-text.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/card-text.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/card-text.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/flag.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/flag.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/exclamation-triangle.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/exclamation-triangle.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/aspect-ratio.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/aspect-ratio.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/info-circle.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/info-circle.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/x-header-light.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/x-header-light.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/assets/icons/privacyoptions.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/privacyoptions.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d
GET

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/settings/flags?gl=GB&hl=en-us&sessionId= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/settings/flags?gl=GB&hl=en-us&sessionId= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

sparkcdneus2.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

sparkcdneus2.azureedge.net

IN A

Response

sparkcdneus2.azureedge.net

IN CNAME

sparkcdneus2.ec.azureedge.net

sparkcdneus2.ec.azureedge.net

IN CNAME

cs9.wpc.v0cdn.net

cs9.wpc.v0cdn.net

IN A

152.199.19.161
DNS

images-eds-ssl.xboxlive.com

msedge.exe

Remote address:

8.8.8.8:53

Request

images-eds-ssl.xboxlive.com

IN A

Response

images-eds-ssl.xboxlive.com

IN CNAME

images-eds-ssl.xboxlive.com.edgekey.net

images-eds-ssl.xboxlive.com.edgekey.net

IN CNAME

e87.dspg.akamaiedge.net

e87.dspg.akamaiedge.net

IN A

2.18.108.7
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKem_JgrRr7gS_Bn7fCpUYVwcAEB_z.pvbXh248WIR6l2f2RpLkepH7aQ1Mjpmvv.0g-&h=210

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKem_JgrRr7gS_Bn7fCpUYVwcAEB_z.pvbXh248WIR6l2f2RpLkepH7aQ1Mjpmvv.0g-&h=210 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: vufSsNXHX0edWwW2.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 22594
Cache-Control: private, max-age=2332524
Date: Tue, 20 Aug 2024 09:17:49 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKf2UuDfUP91WO2uYNo358fUuEg4J8DSHlBmgw0NXnXpkaHoHurZ4Z8XZ_Qn_whaLEs-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKf2UuDfUP91WO2uYNo358fUuEg4J8DSHlBmgw0NXnXpkaHoHurZ4Z8XZ_Qn_whaLEs-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: 4Q2c7afNfkO/uIUO.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 30584
Cache-Control: private, max-age=335451
Date: Tue, 20 Aug 2024 09:18:21 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKfE9DsKvMyNlXcrGNhjyVdZVDnlLtjhiH3XudrX9fWg5nNgvv79ZqX1qx9y7dQ0d_Y-&format=source&h=210

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKfE9DsKvMyNlXcrGNhjyVdZVDnlLtjhiH3XudrX9fWg5nNgvv79ZqX1qx9y7dQ0d_Y-&format=source&h=210 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: mhgTTrFwT06Q0ukk.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/png
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 11823
Cache-Control: private, max-age=720646
Date: Tue, 20 Aug 2024 09:17:49 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeNqf6daEbxLYwKJ._I1u3gGX6lGW_l6RO_g_YMJA6JTkqojzMrA9aMgIx75CltN48-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeNqf6daEbxLYwKJ._I1u3gGX6lGW_l6RO_g_YMJA6JTkqojzMrA9aMgIx75CltN48-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: nOAYoo1KIE2hmyPM.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 22668
Cache-Control: private, max-age=335451
Date: Tue, 20 Aug 2024 09:18:21 GMT
Connection: keep-alive
DNS

musicart.xboxlive.com

msedge.exe

Remote address:

8.8.8.8:53

Request

musicart.xboxlive.com

IN A

Response

musicart.xboxlive.com

IN CNAME

musicart.xboxlive.com.edgekey.net

musicart.xboxlive.com.edgekey.net

IN CNAME

e87.g.akamaiedge.net

e87.g.akamaiedge.net

IN A

2.18.108.7
DNS

store-images.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

store-images.microsoft.com

IN A

Response

store-images.microsoft.com

IN CNAME

store-images.microsoft.com-c.edgekey.net

store-images.microsoft.com-c.edgekey.net

IN CNAME

e12564.dscg.akamaiedge.net

e12564.dscg.akamaiedge.net

IN A

2.18.109.103
DNS

www.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

www.clarity.ms

IN A

Response

www.clarity.ms

IN CNAME

clarity.azurefd.net

clarity.azurefd.net

IN CNAME

azurefd-t-prod.trafficmanager.net

azurefd-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0039.t-0009.t-msedge.net

shed.dual-low.s-part-0039.t-0009.t-msedge.net

IN CNAME

s-part-0039.t-0009.t-msedge.net

s-part-0039.t-0009.t-msedge.net

IN A

13.107.246.67
GET

https://www.clarity.ms/tag/inyago70pn

msedge.exe

Remote address:

13.107.246.67:443

Request

GET /tag/inyago70pn HTTP/2.0
host: www.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://apps.microsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:50 GMT
content-type: application/x-javascript
content-length: 522
cache-control: no-cache, no-store
expires: -1
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref: 20240820T091750Z-1596f6d6bb527jfbd2k6tv4pn000000001bg00000001f0cy
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
GET

https://www.clarity.ms/s/0.7.44/clarity-extended.js

msedge.exe

Remote address:

13.107.246.67:443

Request

GET /s/0.7.44/clarity-extended.js HTTP/2.0
host: www.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://apps.microsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:17:59 GMT
content-type: application/javascript;charset=utf-8
vary: Accept-Encoding
last-modified: Sun, 18 Aug 2024 10:51:52 GMT
etag: W/"0x8DCBF73C5221C0E"
x-ms-request-id: 2f63e0ad-a01e-0012-6c08-f2550b000000
x-ms-version: 2018-03-28
access-control-allow-origin: *
x-azure-ref: 20240820T091759Z-1596f6d6bb527jfbd2k6tv4pn000000001bg00000001f24s
cache-control: public, max-age=86400
x-fd-int-roxy-purgeid: 51562430
x-cache: TCP_HIT
content-encoding: br
DNS

64.246.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

64.246.107.13.in-addr.arpa

IN PTR

Response
DNS

161.19.199.152.in-addr.arpa

Remote address:

8.8.8.8:53

Request

161.19.199.152.in-addr.arpa

IN PTR

Response
DNS

7.108.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

7.108.18.2.in-addr.arpa

IN PTR

Response

7.108.18.2.in-addr.arpa

IN PTR

a2-18-108-7deploystaticakamaitechnologiescom
DNS

112.245.100.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

112.245.100.95.in-addr.arpa

IN PTR

Response

112.245.100.95.in-addr.arpa

IN PTR

a95-100-245-112deploystaticakamaitechnologiescom
DNS

103.109.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

103.109.18.2.in-addr.arpa

IN PTR

Response

103.109.18.2.in-addr.arpa

IN PTR

a2-18-109-103deploystaticakamaitechnologiescom
DNS

67.246.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.246.107.13.in-addr.arpa

IN PTR

Response
DNS

h.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
DNS

h.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

h.clarity.ms

IN A
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 718
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:01 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 728
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:01 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 245
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:03 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKem_JgrRr7gS_Bn7fCpUYVwcAEB_z.pvbXh248WIR6l2f2RpLkepH7aQ1Mjpmvv.0g-&h=720

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKem_JgrRr7gS_Bn7fCpUYVwcAEB_z.pvbXh248WIR6l2f2RpLkepH7aQ1Mjpmvv.0g-&h=720 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: uMD0eU/Mh0OSJzRQ.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 165829
Cache-Control: private, max-age=372326
Date: Tue, 20 Aug 2024 09:18:18 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeLe10Sw3vOA598ssDY5_.hv5ZuDCpUU6p9.Xcdz4Q0dchs.xJec1MA1YDeWdW6kAs-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeLe10Sw3vOA598ssDY5_.hv5ZuDCpUU6p9.Xcdz4Q0dchs.xJec1MA1YDeWdW6kAs-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: TCvTJnxZo0KwHw0B.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 23238
Cache-Control: private, max-age=335454
Date: Tue, 20 Aug 2024 09:18:18 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeNPChbnDnXrlACAc81O9_lFLT_xI.60XNdWFU8gE9kLkCWHCyVXRpjxMYclkeGuxE-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeNPChbnDnXrlACAc81O9_lFLT_xI.60XNdWFU8gE9kLkCWHCyVXRpjxMYclkeGuxE-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: hJ2Fa9Ip1EWEyIpV.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 17843
Cache-Control: private, max-age=372326
Date: Tue, 20 Aug 2024 09:18:18 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxnuwhvZJBcOoTALhdIGiPXS1OOSTyB4LiKHoZz1ST0iymmPJkVNjR4mRtoAuG4bAsV6HZnLBwea.w9eczsTfIwA-&format=source&w=75

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxnuwhvZJBcOoTALhdIGiPXS1OOSTyB4LiKHoZz1ST0iymmPJkVNjR4mRtoAuG4bAsV6HZnLBwea.w9eczsTfIwA-&format=source&w=75 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: eb02TFMuUEqsfMYw.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/png
Last-Modified: Mon, 24 Jan 2022 01:33:59 GMT
Accept-Ranges: none
Content-Length: 4268
Cache-Control: private, max-age=1855195
Date: Tue, 20 Aug 2024 09:18:20 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKc57RywBKPl.JGKr0w4ljSoCypuYnJjXUAlxpqpc_PbEgaadlchTdmwhUsoi3vaQ.I-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKc57RywBKPl.JGKr0w4ljSoCypuYnJjXUAlxpqpc_PbEgaadlchTdmwhUsoi3vaQ.I-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: Bt5SLLB/4UmwKu3O.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 25286
Cache-Control: private, max-age=335454
Date: Tue, 20 Aug 2024 09:18:18 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKcXf2iLt0PBWV.9HTYPdwbSnbcGYe9xt1F8DqZsuzKYFL67QlrDlh5vlXbFj6uHB88-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKcXf2iLt0PBWV.9HTYPdwbSnbcGYe9xt1F8DqZsuzKYFL67QlrDlh5vlXbFj6uHB88-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: J5a1br1nz0eQm4ao.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 26568
Cache-Control: private, max-age=335451
Date: Tue, 20 Aug 2024 09:18:21 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKdzlH7coKJ2ZMtC8KifmQLgDyb7ZVvHo4iB1.QQBbvXgt7LDsL7evhezu0GHNrV7Dg-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKdzlH7coKJ2ZMtC8KifmQLgDyb7ZVvHo4iB1.QQBbvXgt7LDsL7evhezu0GHNrV7Dg-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: PzUH6Ubui0GFxCWU.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 31591
Cache-Control: private, max-age=335454
Date: Tue, 20 Aug 2024 09:18:18 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKd92kqFkTnE1VWZuEaDfLiWSLBzdbyHr0QTcJa9ToIQKLfHDd1bZFWcafDG0Erkbxo-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKd92kqFkTnE1VWZuEaDfLiWSLBzdbyHr0QTcJa9ToIQKLfHDd1bZFWcafDG0Erkbxo-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: ojB3NV2SGUWaXFV5.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 23707
Cache-Control: private, max-age=335454
Date: Tue, 20 Aug 2024 09:18:18 GMT
Connection: keep-alive
GET

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKe5u6tT8oNwZIPoM.MyNTSTnJJpNXEE3AZlsQFbbu6DMHFW3TJd7ttb5jjxHNI940Y-&h=253

msedge.exe

Remote address:

2.18.108.7:443

Request

GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKe5u6tT8oNwZIPoM.MyNTSTnJJpNXEE3AZlsQFbbu6DMHFW3TJd7ttb5jjxHNI940Y-&h=253 HTTP/1.1
Host: images-eds-ssl.xboxlive.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

MS-CV: 1wlCdDBb3Eqg7lhN.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: MS-CV
Content-Type: image/jpeg
Last-Modified: Mon, 08 Nov 2021 16:34:19 GMT
Accept-Ranges: none
Content-Length: 27389
Cache-Control: private, max-age=372326
Date: Tue, 20 Aug 2024 09:18:18 GMT
Connection: keep-alive
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 174
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:21 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 188
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:26 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
GET

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/settings/flags?gl=GB&hl=en-us&sessionId= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 535
cache-control: public, max-age=2592000
etag: "1daee6fc5503517"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: eW1lVSEprUCb2nzu.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkx5
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/card-text.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/card-text.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ef574"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: BUpFB4qcI0+Nj7R/.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkx6
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/js/color-worker-bb651d13.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/color-worker-bb651d13.js HTTP/2.0
host: apps.microsoft.com
origin: https://apps.microsoft.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: worker
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 534
cache-control: public, max-age=2592000
etag: "1daee6fc5503516"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: cIJtlov/f0iXXPO3.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkx8
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/settings/flags?gl=GB&hl=en-us&sessionId= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/png
vary: Accept-Encoding
cache-control: public, max-age=2592000
etag: W/"1daee6fc550323b"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: fjzjJr6RZ0GmSPIC.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkx9
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/icons/box-seam.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/box-seam.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
vary: Accept-Encoding
cache-control: public, max-age=2592000
etag: W/"1daee6fc5503315"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: eiaDD2ECv0iFxlJV.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxb
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/icons/microsoft-logo-dark-1.png

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/microsoft-logo-dark-1.png HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 815
cache-control: public, max-age=2592000
etag: "1daee6fc550342f"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: NOaii4iUFkmchuIM.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxc
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /api/settings/flags?gl=GB&hl=en-us&sessionId= HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 992
cache-control: public, max-age=2592000
etag: "1daee6fc55034e0"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: l9sLda4mqESiB2XV.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxd
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/flag.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/flag.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 336
cache-control: public, max-age=2592000
etag: "1daee6fc5503650"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 1AJwdtcMD0yEk3TV.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxe
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/chat-text.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/chat-text.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 333
cache-control: public, max-age=2592000
etag: "1daee6fc550364d"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: P9pOZAl790mDFLvk.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxf
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/shield.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/shield.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
vary: Accept-Encoding
cache-control: public, max-age=2592000
etag: W/"1daee6fc55038d9"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: 4bQoZRpbxE+ORuyL.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxg
x-fd-int-roxy-purgeid: 66820183
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/icons/bookmark.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/bookmark.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 487
cache-control: public, max-age=2592000
etag: "1daee6fc55036e7"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: a3i1zLpOkkCyMNrz.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxh
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/search.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/search.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 687
cache-control: public, max-age=2592000
etag: "1daee6fc55035af"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: qiPomVoEt0avqXo1.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxk
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/light-logo-32x32.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/light-logo-32x32.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 477
cache-control: public, max-age=2592000
etag: "1daee6fc55036dd"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: tpfJgauTr0mal3Lp.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxm
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/aspect-ratio.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/aspect-ratio.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public,max-age=31536000,immutable
etag: W/"1daee70663ec038"
last-modified: Wed, 14 Aug 2024 17:35:48 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: OeY3Lk48rE2vt+YP.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxn
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/icons/exclamation-triangle.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/exclamation-triangle.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/png
content-length: 780
cache-control: public, max-age=2592000
etag: "1daee6fc550340c"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: V7ZkLETWy0+uGZAF.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxp
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/icons/info-circle.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/info-circle.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
content-length: 331
cache-control: public, max-age=2592000
etag: "1daee6fc550364b"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: I7jIrldljUyCApRe.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxq
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://apps.microsoft.com/assets/js/auth-control-7ace791a.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/js/auth-control-7ace791a.js HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: image/svg+xml
vary: Accept-Encoding
cache-control: public, max-age=2592000
etag: W/"1daee6fc5503022"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: UB4X6Fg0iUu3pEMm.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxr
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/assets/icons/microsoft-logo-dark-2.png

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/microsoft-logo-dark-2.png HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://apps.microsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: application/json; charset=utf-8
cache-control: no-store
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: KcMY/6yiPEyGo/rS.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkx7
x-fd-int-roxy-purgeid: 0
x-cache: PRIVATE_NOSTORE
GET

https://apps.microsoft.com/assets/icons/x-header-light.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/x-header-light.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: application/json; charset=utf-8
cache-control: no-store
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: zdaJd5WyJEKoIRym.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkx4
x-fd-int-roxy-purgeid: 0
x-cache: PRIVATE_NOSTORE
GET

https://apps.microsoft.com/assets/icons/privacyoptions.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/privacyoptions.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:29 GMT
content-type: application/json; charset=utf-8
cache-control: no-store
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: UI2DfahkCk+Fmp0W.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091829Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zkxa
x-fd-int-roxy-purgeid: 0
x-cache: PRIVATE_NOSTORE
GET

https://apps.microsoft.com/assets/icons/person-loggedout-dark.svg

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /assets/icons/person-loggedout-dark.svg HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exp-session-id=77e13527-93f3-4f2d-8fa9-2fea3a1c0a2d

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:30 GMT
content-type: image/svg+xml
vary: Accept-Encoding
cache-control: public, max-age=2592000
etag: W/"1daee6fc5503f93"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: vPhD4CttjkOnL08C.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091830Z-1596f6d6bb5lx6sm1ppg3aq15000000000yg00000000zm19
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
content-encoding: br
GET

https://apps.microsoft.com/manifest.webmanifest

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /manifest.webmanifest HTTP/2.0
host: apps.microsoft.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:18:31 GMT
content-type: application/manifest+json
content-length: 1947
cache-control: public, max-age=3600
etag: "1daee6fc550309b"
last-modified: Wed, 14 Aug 2024 17:31:18 GMT
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:04e455f9-321c-49bf-8d2c-d79fbf5e8cde
ms-cv: bWFoTfk5xEyqt7uK.0
x-content-type-options: nosniff
permissions-policy: unload=()
content-security-policy: default-src 'self' data: https://*.clarity.ms https://c.bing.com;script-src 'self' wcpstatic.microsoft.com js.monitor.azure.com www.microsoft.com www.clarity.ms get.microsoft.com xvsec.video.microsoft.com bat.bing.com 'unsafe-inline';style-src * 'unsafe-inline';connect-src * data: ms-windows-store:;font-src *;img-src * data: blob:;media-src 'self' blob: https://sfds-production.azurefd.net https://canvasstorageprodtorus.blob.core.windows.net;frame-src * ms-windows-store:;report-uri https://csp.microsoft.com/report/app-store-web-prod
x-powered-by: ASP.NET
x-azure-ref: 20240820T091831Z-1596f6d6bb5p8xdlwndm25kwsc00000000m000000000pgws
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 266
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:35 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 202
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:52 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 252
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 252
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:18:59 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
DNS

h.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 404
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:19:15 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 244
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:19:28 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

173.222.211.40

a1851.dscg2.akamai.net

IN A

173.222.211.41
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
DNS

yt3.ggpht.com

msedge.exe

Remote address:

8.8.8.8:53

Request

yt3.ggpht.com

IN A

Response

yt3.ggpht.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

216.58.215.33
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.232

e86303.dscx.akamaiedge.net

IN A

95.101.129.226

e86303.dscx.akamaiedge.net

IN A

95.101.129.224

e86303.dscx.akamaiedge.net

IN A

95.101.129.234

e86303.dscx.akamaiedge.net

IN A

95.101.129.235

e86303.dscx.akamaiedge.net

IN A

95.101.129.194

e86303.dscx.akamaiedge.net

IN A

95.101.129.146

e86303.dscx.akamaiedge.net

IN A

95.101.129.233

e86303.dscx.akamaiedge.net

IN A

95.101.129.225
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.233

e86303.dscx.akamaiedge.net

IN A

95.101.129.226

e86303.dscx.akamaiedge.net

IN A

95.101.129.211

e86303.dscx.akamaiedge.net

IN A

95.101.129.232

e86303.dscx.akamaiedge.net

IN A

95.101.129.224

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.219

e86303.dscx.akamaiedge.net

IN A

95.101.129.216

e86303.dscx.akamaiedge.net

IN A

95.101.129.225
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.129.219

e86303.dscx.akamaiedge.net

IN A

95.101.129.208

e86303.dscx.akamaiedge.net

IN A

95.101.129.216

e86303.dscx.akamaiedge.net

IN A

95.101.129.224

e86303.dscx.akamaiedge.net

IN A

95.101.129.209

e86303.dscx.akamaiedge.net

IN A

95.101.129.210

e86303.dscx.akamaiedge.net

IN A

95.101.129.200

e86303.dscx.akamaiedge.net

IN A

95.101.129.211

e86303.dscx.akamaiedge.net

IN A

95.101.129.201
DNS

233.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

233.129.101.95.in-addr.arpa

IN PTR

Response

233.129.101.95.in-addr.arpa

IN PTR

a95-101-129-233deploystaticakamaitechnologiescom
DNS

232.129.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

232.129.101.95.in-addr.arpa

IN PTR

Response

232.129.101.95.in-addr.arpa

IN PTR

a95-101-129-232deploystaticakamaitechnologiescom
DNS

i.ytimg.com

msedge.exe

Remote address:

8.8.8.8:53

Request

i.ytimg.com

IN A

Response

i.ytimg.com

IN A

216.58.214.86

i.ytimg.com

IN A

216.58.214.182

i.ytimg.com

IN A

142.250.179.86

i.ytimg.com

IN A

142.250.201.182

i.ytimg.com

IN A

172.217.20.182

i.ytimg.com

IN A

142.250.74.246

i.ytimg.com

IN A

172.217.18.214

i.ytimg.com

IN A

172.217.20.214

i.ytimg.com

IN A

142.250.75.246

i.ytimg.com

IN A

216.58.215.54

i.ytimg.com

IN A

142.250.179.118

i.ytimg.com

IN A

142.250.178.150
DNS

i.ytimg.com

msedge.exe

Remote address:

8.8.8.8:53

Request

i.ytimg.com

IN A

Response

i.ytimg.com

IN A

172.217.20.182

i.ytimg.com

IN A

172.217.18.214

i.ytimg.com

IN A

216.58.215.54

i.ytimg.com

IN A

142.250.75.246

i.ytimg.com

IN A

142.250.179.118

i.ytimg.com

IN A

142.250.74.246

i.ytimg.com

IN A

142.250.179.86

i.ytimg.com

IN A

216.58.214.86

i.ytimg.com

IN A

142.250.178.150

i.ytimg.com

IN A

142.250.201.182

i.ytimg.com

IN A

172.217.20.214

i.ytimg.com

IN A

216.58.214.182
DNS

86.214.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

86.214.58.216.in-addr.arpa

IN PTR

Response

86.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f221e100net

86.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f86�H

86.214.58.216.in-addr.arpa

IN PTR

par10s39-in-f22�H
DNS

rr4---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr4---sn-4g5edn6r.googlevideo.com

IN A
DNS

rr4---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr4---sn-4g5edn6r.googlevideo.com

IN A
DNS

rr4---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr4---sn-4g5edn6r.googlevideo.com

IN A
DNS

rr4---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr4---sn-4g5edn6r.googlevideo.com

IN A
DNS

rr4---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr4---sn-4g5edn6r.googlevideo.com

IN A
DNS

play.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

play.google.com

IN A

Response

play.google.com

IN A

142.250.201.174
DNS

play.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

play.google.com

IN A
DNS

play.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

play.google.com

IN A
DNS

play.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

play.google.com

IN A
DNS

play.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

play.google.com

IN A
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

216.58.214.66
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A
DNS

66.214.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

66.214.58.216.in-addr.arpa

IN PTR

Response

66.214.58.216.in-addr.arpa

IN PTR

par10s39-in-f21e100net

66.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f66�G

66.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f2�G
DNS

66.214.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

66.214.58.216.in-addr.arpa

IN PTR

Response

66.214.58.216.in-addr.arpa

IN PTR

par10s39-in-f21e100net

66.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f2�G

66.214.58.216.in-addr.arpa

IN PTR

fra15s10-in-f66�G
DNS

rr4---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr4---sn-4g5edn6r.googlevideo.com

IN A

Response

rr4---sn-4g5edn6r.googlevideo.com

IN CNAME

rr4.sn-4g5edn6r.googlevideo.com

rr4.sn-4g5edn6r.googlevideo.com

IN A

74.125.153.201
DNS

rr4---sn-4g5edn6r.googlevideo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rr4---sn-4g5edn6r.googlevideo.com

IN A
GET

https://rr4---sn-4g5edn6r.googlevideo.com/generate_204

msedge.exe

Remote address:

74.125.153.201:443

Request

GET /generate_204 HTTP/1.1
Host: rr4---sn-4g5edn6r.googlevideo.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.youtube.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Server: gvs 1.0
Date: Tue, 20 Aug 2024 09:20:11 GMT
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Content-Length: 0
DNS

201.153.125.74.in-addr.arpa

Remote address:

8.8.8.8:53

Request

201.153.125.74.in-addr.arpa

IN PTR

Response

201.153.125.74.in-addr.arpa

IN PTR

fra16s58-in-f91e100net
DNS

h.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
DNS

h.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 141
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:20:31 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
DNS

h.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 142
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
DNS

roaming.officeapps.live.com

WINWORD.EXE

Remote address:

8.8.8.8:53

Request

roaming.officeapps.live.com

IN A

Response

roaming.officeapps.live.com

IN CNAME

prod.roaming1.live.com.akadns.net

prod.roaming1.live.com.akadns.net

IN CNAME

eur.roaming1.live.com.akadns.net

eur.roaming1.live.com.akadns.net

IN CNAME

neu-azsc-000.roaming.officeapps.live.com

neu-azsc-000.roaming.officeapps.live.com

IN CNAME

osiprod-neu-buff-azsc-000.northeurope.cloudapp.azure.com

osiprod-neu-buff-azsc-000.northeurope.cloudapp.azure.com

IN A

52.109.76.243
DNS

roaming.officeapps.live.com

WINWORD.EXE

Remote address:

8.8.8.8:53

Request

roaming.officeapps.live.com

IN A

Response

roaming.officeapps.live.com

IN CNAME

prod.roaming1.live.com.akadns.net

prod.roaming1.live.com.akadns.net

IN CNAME

eur.roaming1.live.com.akadns.net

eur.roaming1.live.com.akadns.net

IN CNAME

neu-azsc-000.roaming.officeapps.live.com

neu-azsc-000.roaming.officeapps.live.com

IN CNAME

osiprod-neu-buff-azsc-000.northeurope.cloudapp.azure.com

osiprod-neu-buff-azsc-000.northeurope.cloudapp.azure.com

IN A

52.109.76.243
DNS

46.28.109.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

46.28.109.52.in-addr.arpa

IN PTR

Response
DNS

46.28.109.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

46.28.109.52.in-addr.arpa

IN PTR
POST

https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

WINWORD.EXE

Remote address:

52.109.76.243:443

Request

POST /rs/RoamingSoapService.svc HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
Content-Type: text/xml; charset=utf-8
User-Agent: MS-WebServices/1.0
SOAPAction: "http://tempuri.org/IRoamingSettingsService/GetConfig"
Content-Length: 511
Host: roaming.officeapps.live.com

Response

HTTP/1.1 200 OK

Cache-Control: private
Content-Type: text/xml; charset=utf-8
Server: Microsoft-IIS/10.0
X-OfficeFE: RoamingFE_IN_276
X-OfficeVersion: 16.0.18011.30577
X-OfficeCluster: neu-000.roaming.officeapps.live.com
X-CorrelationId: 74c3d002-8e84-40be-8365-c8faa7c79a6c
X-Powered-By: ASP.NET
Date: Tue, 20 Aug 2024 09:22:21 GMT
Content-Length: 654
DNS

243.76.109.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

243.76.109.52.in-addr.arpa

IN PTR

Response
DNS

174.117.168.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

174.117.168.52.in-addr.arpa

IN PTR

Response
DNS

h.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
POST

https://h.clarity.ms/collect

msedge.exe

Remote address:

51.8.64.151:443

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 142
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:22:34 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
DNS

metadata.templates.cdn.office.net

WINWORD.EXE

Remote address:

8.8.8.8:53

Request

metadata.templates.cdn.office.net

IN A

Response

metadata.templates.cdn.office.net

IN CNAME

templatesmetadata.office.net

templatesmetadata.office.net

IN CNAME

templatesmetadata.office.net.edgekey.net

templatesmetadata.office.net.edgekey.net

IN CNAME

e26769.dscb.akamaiedge.net

e26769.dscb.akamaiedge.net

IN A

23.40.43.123

e26769.dscb.akamaiedge.net

IN A

23.40.43.41
GET

https://metadata.templates.cdn.office.net/client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C

WINWORD.EXE

Remote address:

23.40.43.123:443

Request

GET /client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: metadata.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Type: text/xml
Server: Kestrel
Content-Encoding: gzip
Content-Length: 1264
Cache-Control: max-age=191266
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Vary: Accept-Encoding
DNS

binaries.templates.cdn.office.net

WINWORD.EXE

Remote address:

8.8.8.8:53

Request

binaries.templates.cdn.office.net

IN A

Response

binaries.templates.cdn.office.net

IN CNAME

binaries.templates.cdn.office.net.edgesuite.net

binaries.templates.cdn.office.net.edgesuite.net

IN CNAME

a1847.dscg2.akamai.net

a1847.dscg2.akamai.net

IN A

173.222.211.57

a1847.dscg2.akamai.net

IN A

173.222.211.24
DNS

binaries.templates.cdn.office.net

WINWORD.EXE

Remote address:

8.8.8.8:53

Request

binaries.templates.cdn.office.net

IN A

Response

binaries.templates.cdn.office.net

IN CNAME

binaries.templates.cdn.office.net.edgesuite.net

binaries.templates.cdn.office.net.edgesuite.net

IN CNAME

a1847.dscg2.akamai.net

a1847.dscg2.akamai.net

IN A

173.222.211.57

a1847.dscg2.akamai.net

IN A

173.222.211.24
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851216.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851216.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 34816
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: YoYxJM3NoTXswOcieCy4iA==
Last-Modified: Fri, 22 Apr 2016 16:09:38 GMT
ETag: 0x8D36AC8813CE0D3
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 01a9fe93-e01e-0020-0397-a0f18d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02835233.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02835233.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 46413
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: xFXEvEvsng2mfE0eU+RtWg==
Last-Modified: Fri, 22 Apr 2016 16:09:25 GMT
ETag: 0x8D36AC879BBB45C
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bcca83ea-301e-000c-1015-b91d22000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851219.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851219.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31605
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: ae2zv4HJn+ipS7oDQIxa4Q==
Last-Modified: Fri, 22 Apr 2016 16:09:39 GMT
ETag: 0x8D36AC8822FFB6E
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d1eac4bf-d01e-0092-5897-a00efc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851218.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851218.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31835
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: kqgZ1DSoquosZfDMLzO7Og==
Last-Modified: Fri, 22 Apr 2016 16:09:39 GMT
ETag: 0x8D36AC881E66CE5
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7ac92116-501e-008c-3524-b9e224000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851217.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851217.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 33610
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: UYBOJVxXMXYDn01bVcEqsg==
Last-Modified: Fri, 22 Apr 2016 16:09:38 GMT
ETag: 0x8D36AC881987151
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 99ba29f3-501e-00ee-1a97-a02003000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851220.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851220.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31482
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 8Q35ApgPHVvuqWssZoQIpw==
Last-Modified: Fri, 22 Apr 2016 16:09:40 GMT
ETag: 0x8D36AC8827914A7
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d704013f-301e-015e-1697-a09fc7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851221.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851221.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31562
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: HW+Oc6BmKkjTMgkKTIyJjw==
Last-Modified: Fri, 22 Apr 2016 16:09:40 GMT
ETag: 0x8D36AC882C4ED43
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e4f000bb-501e-0148-0297-a06910000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851222.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851222.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 28911
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: bXh7HiI9trkbaSOAYsyocg==
Last-Modified: Fri, 22 Apr 2016 16:09:41 GMT
ETag: 0x8D36AC8830E54C8
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2bee5db1-501e-00ee-2682-b92003000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851227.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851227.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31471
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: karb7EFxz6gpK2GEkvXvNA==
Last-Modified: Fri, 22 Apr 2016 16:09:43 GMT
ETag: 0x8D36AC8848A0495
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c81084a1-301e-0023-0625-b910e9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851223.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851223.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 32833
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: IFr1FgTvlu8ejmAhJUH3Qg==
Last-Modified: Fri, 22 Apr 2016 16:09:41 GMT
ETag: 0x8D36AC88357BC32
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 29d802a9-701e-006f-6997-a080d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851226.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851226.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 35519
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: U+6dpJ0LhDVwOOzzdoONLg==
Last-Modified: Fri, 22 Apr 2016 16:09:43 GMT
ETag: 0x8D36AC88440C433
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b3f59b25-f01e-00aa-4f97-a0aa3c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851225.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851225.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31008
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 4DPMvHunh6L4JM4JUuV9RA==
Last-Modified: Fri, 22 Apr 2016 16:09:42 GMT
ETag: 0x8D36AC883F49D7D
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b3f59ba9-f01e-00aa-4597-a0aa3c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851224.cab

WINWORD.EXE

Remote address:

173.222.211.57:443

Request

GET /support/templates/en-us/tp02851224.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 3C7003D2-2A61-45F0-B660-A43C05234CDC
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 30957
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 08kDbk4RWegysbTS6dQr8A==
Last-Modified: Fri, 22 Apr 2016 16:09:42 GMT
ETag: 0x8D36AC883A171B7
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7a3535a8-301e-0103-55f4-b69543000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Tue, 20 Aug 2024 09:22:38 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
DNS

123.43.40.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

123.43.40.23.in-addr.arpa

IN PTR

Response

123.43.40.23.in-addr.arpa

IN PTR

a23-40-43-123deploystaticakamaitechnologiescom
DNS

backstory.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

backstory.ebay.com.au

IN A

Response

backstory.ebay.com.au

IN CNAME

autotrack.ebaycdn.net

autotrack.ebaycdn.net

IN CNAME

autotrack.ebay.com.edgekey.net

autotrack.ebay.com.edgekey.net

IN CNAME

e189811.a.akamaiedge.net

e189811.a.akamaiedge.net

IN A

104.117.183.96

e189811.a.akamaiedge.net

IN A

104.117.183.99

e189811.a.akamaiedge.net

IN A

104.117.183.88

e189811.a.akamaiedge.net

IN A

104.117.183.90

e189811.a.akamaiedge.net

IN A

104.117.183.80

e189811.a.akamaiedge.net

IN A

104.117.183.83

e189811.a.akamaiedge.net

IN A

104.117.183.107

e189811.a.akamaiedge.net

IN A

104.117.183.74

e189811.a.akamaiedge.net

IN A

104.117.183.81
DNS

backstory.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

backstory.ebay.com.au

IN A

Response

backstory.ebay.com.au

IN CNAME

autotrack.ebaycdn.net

autotrack.ebaycdn.net

IN CNAME

autotrack.ebay.com.edgekey.net

autotrack.ebay.com.edgekey.net

IN CNAME

e189811.a.akamaiedge.net

e189811.a.akamaiedge.net

IN A

104.117.183.113

e189811.a.akamaiedge.net

IN A

104.117.183.90

e189811.a.akamaiedge.net

IN A

104.117.183.96

e189811.a.akamaiedge.net

IN A

104.117.183.120

e189811.a.akamaiedge.net

IN A

104.117.183.88

e189811.a.akamaiedge.net

IN A

104.117.183.128

e189811.a.akamaiedge.net

IN A

104.117.183.107

e189811.a.akamaiedge.net

IN A

104.117.183.121

e189811.a.akamaiedge.net

IN A

104.117.183.99
DNS

sr-client-cfg.amplitude.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sr-client-cfg.amplitude.com

IN A

Response

sr-client-cfg.amplitude.com

IN A

143.204.176.23

sr-client-cfg.amplitude.com

IN A

143.204.176.49

sr-client-cfg.amplitude.com

IN A

143.204.176.53

sr-client-cfg.amplitude.com

IN A

143.204.176.61
POST

https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724145768151

msedge.exe

Remote address:

104.117.183.96:443

Request

POST /customer/v1/customer_service?ct=1724145768151 HTTP/2.0
host: backstory.ebay.com.au
content-length: 943
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: ebay=%5Esbf%3D%23000000%5E
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAlDGU2ORAQAA8/gIbxh63GKvZEzW5qDRSJobWCtXpevfEuxoLo/Mv5BKxpPOuIvTXaws/7VG17g3DFNUayPNzHxsHxn2FdtJoqHw7pVCetK+PGQRsrPdD1O/23ct3OanUKrzBhCaaFP2yoCNShY0E4iruPNZrTU10ox8k1sdeDVi2+4RGwcryVRQNzvyrsuv5MLM2WVRLFlTet2OEX+uPNNy1KINkQhxpejvFJGe9gW1QPjczOpFFXfzIw==~1
cookie: dp1=bbl/GB6a86c4db^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilkVtFQzRSMEFOAMoAIGqGxNs2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGTjOOWWLhKVynmu9PHD0wWbFaoi6Od3
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NDczOTA3OCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMiUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMSU3RA==

Response

HTTP/2.0 200

rlogid: t6bprhwwgdh%3F%3Ckuvgrwjrubfm*hgqtd%28rbpv6712-1916f189cca-0x2e2e
content-disposition: INLINE;filename="trk.gif"
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept, authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
content-type: image/gif
content-length: 35
x-envoy-upstream-service-time: 26
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
expires: Tue, 20 Aug 2024 09:22:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:22:49 GMT
strict-transport-security: max-age=31536000
POST

https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724145778348

msedge.exe

Remote address:

104.117.183.96:443

Request

POST /customer/v1/customer_service?ct=1724145778348 HTTP/2.0
host: backstory.ebay.com.au
content-length: 663
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NTc2ODE3MCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMyUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMiU3RA==
cookie: dp1=bbl/GB6a86c76e^
cookie: ds2=asotr/bGiAQzzzzzzz^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+5FQzRSMEFOAMoAIGqGx242ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGd2OUCuMuYijGMP7eo+Id1/LrM99+dX
cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQlhp7XB1ooGmRAQAAq68Ybxg2At2QIujCyWUp1WDV6kMLbggt5z6Anheh8Q5C5qMuobli56StZpOd8FyEjAXGGN5r5W12hurCJ3sUyhHNz71wz/Fe2CrhlO5f/c3VzJZTcAAc5fVFJ0VuWGFBhih0VxQrWnDN8oiuWLzbY1daYXY2MJuhToMFsoGBmbJqQsGUvBZiq0B/bPpk4+i+4rTap00yescQ2LKfUr5Mys/reOG+DvPXveQCSHPIeIsBvg==~1

Response

HTTP/2.0 200

rlogid: t6bprhwwgdh%3F%3Ckuvgrwjrubfm*w10o%3A%28rbpv670%3D-1916f18c3ae-0x2780
content-disposition: INLINE;filename="trk.gif"
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept, authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
content-type: image/gif
content-length: 35
x-envoy-upstream-service-time: 4
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
expires: Tue, 20 Aug 2024 09:22:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:22:59 GMT
strict-transport-security: max-age=31536000
POST

https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724145885521

msedge.exe

Remote address:

104.117.183.96:443

Request

POST /customer/v1/customer_service?ct=1724145885521 HTTP/2.0
host: backstory.ebay.com.au
content-length: 18327
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NTc2ODE3MCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMyUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMiU3RA==
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQlhp7XB1ooGmRAQAAq68Ybxg2At2QIujCyWUp1WDV6kMLbggt5z6Anheh8Q5C5qMuobli56StZpOd8FyEjAXGGN5r5W12hurCJ3sUyhHNz71wz/Fe2CrhlO5f/c3VzJZTcAAc5fVFJ0VuWGFBhih0VxQrWnDN8oiuWLzbY1daYXY2MJuhToMFsoGBmbJqQsGUvBZiq0B/bPpk4+i+4rTap00yescQ2LKfUr5Mys/reOG+DvPXveQCSHPIeIsBvg==~1
cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E
cookie: dp1=bbl/GB6a86c79b^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2illBtFQzRSMEFOAMoAIGqGx5s2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAJmxGejMTDqKdkT/4CNuSfhfWlTaVJqsIbMrQ**
cookie: ds2=asotr/bGiAQzzzzzzz^

Response

HTTP/2.0 200

rlogid: t6bprhwwgdh%3F%3Cumjgrwjrubfm*eavle%28rbpv6702-1916f1a66cf-0x2787
content-disposition: INLINE;filename="trk.gif"
access-control-allow-origin: https://www.ebay.com.au
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept, authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
content-type: image/gif
content-length: 35
x-envoy-upstream-service-time: 25
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
expires: Tue, 20 Aug 2024 09:24:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:24:47 GMT
strict-transport-security: max-age=31536000
OPTIONS

https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

msedge.exe

Remote address:

143.204.176.23:443

Request

OPTIONS /config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay HTTP/2.0
host: sr-client-cfg.amplitude.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://www.ebay.com.au
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Tue, 20 Aug 2024 09:22:49 GMT
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
x-cache: Miss from cloudfront
via: 1.1 58336461deb255b6ec24bb4f21db9b6a.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-C1
x-amz-cf-id: vmOleepyvTfWelteVSEax6UkN1gN5MflcPWsNBEtEaiTKs1LnuF9wA==
GET

https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

msedge.exe

Remote address:

143.204.176.23:443

Request

GET /config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay HTTP/2.0
host: sr-client-cfg.amplitude.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: */*
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
origin: https://www.ebay.com.au
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-length: 190
date: Tue, 20 Aug 2024 09:21:54 GMT
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-credentials: true
access-control-allow-methods: POST, OPTIONS
cache-control: public, max-age=60, s-maxage=60, stale-if-error=86400, stale-while-revalidate=600
x-cache: Hit from cloudfront
via: 1.1 58336461deb255b6ec24bb4f21db9b6a.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-C1
x-amz-cf-id: 8pudsyduEvCrFYPhHlDZzqSxnUjV4uNbsK3v8HjHkdRUvRByFzaxGQ==
age: 55
DNS

96.183.117.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

96.183.117.104.in-addr.arpa

IN PTR

Response

96.183.117.104.in-addr.arpa

IN PTR

a104-117-183-96deploystaticakamaitechnologiescom
DNS

23.176.204.143.in-addr.arpa

Remote address:

8.8.8.8:53

Request

23.176.204.143.in-addr.arpa

IN PTR

Response

23.176.204.143.in-addr.arpa

IN PTR

server-143-204-176-23lhr50r cloudfrontnet
DNS

rover.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

rover.ebay.com.au

IN A

Response

rover.ebay.com.au

IN CNAME

slot9428.ebay.com.edgekey.net

slot9428.ebay.com.edgekey.net

IN CNAME

e9428.a.akamaiedge.net

e9428.a.akamaiedge.net

IN A

2.18.109.11
DNS

rover.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

rover.ebay.com.au

IN A

Response

rover.ebay.com.au

IN CNAME

slot9428.ebay.com.edgekey.net

slot9428.ebay.com.edgekey.net

IN CNAME

e9428.a.akamaiedge.net

e9428.a.akamaiedge.net

IN A

2.18.109.11
GET

https://rover.ebay.com.au/roverclk/0/0/9?trknvp=sid%3Dp4375194.m1382.l6435%26ts%3D1724145769397

msedge.exe

Remote address:

2.18.109.11:443

Request

GET /roverclk/0/0/9?trknvp=sid%3Dp4375194.m1382.l6435%26ts%3D1724145769397 HTTP/2.0
host: rover.ebay.com.au
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: ebay=%5Esbf%3D%23000000%5E
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAlDGU2ORAQAA8/gIbxh63GKvZEzW5qDRSJobWCtXpevfEuxoLo/Mv5BKxpPOuIvTXaws/7VG17g3DFNUayPNzHxsHxn2FdtJoqHw7pVCetK+PGQRsrPdD1O/23ct3OanUKrzBhCaaFP2yoCNShY0E4iruPNZrTU10ox8k1sdeDVi2+4RGwcryVRQNzvyrsuv5MLM2WVRLFlTet2OEX+uPNNy1KINkQhxpejvFJGe9gW1QPjczOpFFXfzIw==~1
cookie: dp1=bbl/GB6a86c4db^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilkVtFQzRSMEFOAMoAIGqGxNs2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGTjOOWWLhKVynmu9PHD0wWbFaoi6Od3
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NTc2ODE3MCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMyUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMiU3RA==

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-type: image/gif
content-length: 42
etag: W/"2a-Mo5HJyGpM0WAHtVTMkDqwtH4SYw"
rlogid: t6bkbbp%3F%3Ckuvgig%60u*pkpke(rbpv674%3C-1916f18a209-0x1205
x-envoy-upstream-service-time: 50
server: ebay-proxy-server
strict-transport-security: max-age=31536000
x-ebay-pop-id: SLBSLCAZ01
date: Tue, 20 Aug 2024 09:22:51 GMT
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: dp1=bbl/GB6a86c76b^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:51 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+tFQzRSMEFOAMoAIGqGx2s2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGdzOclrLjzBbOnVIaH6Q2Y8EfVhxxYG; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:51 GMT; HttpOnly; Secure
DNS

11.109.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.109.18.2.in-addr.arpa

IN PTR

Response

11.109.18.2.in-addr.arpa

IN PTR

a2-18-109-11deploystaticakamaitechnologiescom
DNS

www.facebook.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.facebook.com

IN A

Response

www.facebook.com

IN CNAME

star-mini.c10r.facebook.com

star-mini.c10r.facebook.com

IN A

157.240.17.35
DNS

www.ebay.com.au

msedge.exe

Remote address:

8.8.8.8:53

Request

www.ebay.com.au

IN A

Response

www.ebay.com.au

IN CNAME

ipv4.slot11847.ebay.com.edgekey.net

ipv4.slot11847.ebay.com.edgekey.net

IN CNAME

e11847.a.akamaiedge.net

e11847.a.akamaiedge.net

IN A

2.18.109.98
POST

https://www.ebay.com.au/gdpr/ac/getToken?v=2

msedge.exe

Remote address:

2.18.109.98:443

Request

POST /gdpr/ac/getToken?v=2 HTTP/2.0
host: www.ebay.com.au
content-length: 15
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQohoSAlDGU2ORAQAA8/gIbxh63GKvZEzW5qDRSJobWCtXpevfEuxoLo/Mv5BKxpPOuIvTXaws/7VG17g3DFNUayPNzHxsHxn2FdtJoqHw7pVCetK+PGQRsrPdD1O/23ct3OanUKrzBhCaaFP2yoCNShY0E4iruPNZrTU10ox8k1sdeDVi2+4RGwcryVRQNzvyrsuv5MLM2WVRLFlTet2OEX+uPNNy1KINkQhxpejvFJGe9gW1QPjczOpFFXfzIw==~1
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NTc2ODE3MCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMyUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMiU3RA==
cookie: dp1=bbl/GB6a86c76b^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+tFQzRSMEFOAMoAIGqGx2s2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGdzOclrLjzBbOnVIaH6Q2Y8EfVhxxYG
cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-security-policy-report-only: style-src 'self' 'unsafe-inline' data: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.cn *.gstatic.com *.googleapis.com; connect-src 'self' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au data: *.google.com *.google-analytics.com *.ucweb.com *.googleapis.com *.adform.com *.adition.com beeswax.com *.bidswitch.com *.criteo.com *.gstatic.com *.dotomi.com *.indexexchange.com *.rubiconproject.com *.adroll.com *.openx.com *.vtracy.de *.pubmatic.com *.quantcast.com rtbhouse.com *.amazonaws.com *.adnxs.com *.yahoo.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.cn blob: data: *.ebayrtm.com *.paypal.com *.google-analytics.com *.cloudflare.com *.googletagmanager.com *.google.com *.googleapis.com; frame-ancestors 'self' *.ebay.com *.ebay.com.au *.ebay.au; default-src 'self' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebayimg.com *.bluekai.com *.paypal.com *.gstatic.com *.cloudflare.com *.google.com *.google-analytics.com; report-uri https://monitor.ebay.com/csp-report/gdpr/adchoice_token?id=818171462930616273&rid=t6davu7%3F%3Ctofacsw2*rcv%60y(rbpv6770-1916f18adff-0x1203#pd
access-control-allow-credentials: true
access-control-allow-origin: https://www.ebay.com.au
content-type: application/json; charset=utf-8
content-length: 186
etag: W/"ba-L0NmwSdDxigQ2jDqw38wbNAmKXs"
rlogid: t6davu7%3F%3Ctofacsw2*rcv%60y(rbpv6770-1916f18adff-0x1203
x-envoy-upstream-service-time: 199
server: ebay-proxy-server
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:22:54 GMT
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: dp1=bbl/GB6a86c76e^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+5FQzRSMEFOAMoAIGqGx242ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAJmxGd2MTBP+nhAPXKXSHeRONekaiLpJgHa0g**; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: dp1=bbl/GB6a86c76e^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+5FQzRSMEFOAMoAIGqGx242ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGd2OUCuMuYijGMP7eo+Id1/LrM99+dX; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQlhp7XAxooGmRAQAAda4YbxhWM2JXL6vlGDkfyVAGZ1nze7oyM0c7sWTVUT2fcxWKhl0mvArkAp57aJ7xuhyPQwvz/eLrBybdb13QgRx54N3twn+mdgY5ZWPwGm0i7xX1VXe/4rqPgw2ulLWyMoUg8yc5c6cHXDkwIhfcUtAJokS6AK/SFD9WTf6IY1kybuTVjxMot6Pa/mJmu0RDRoqwarQqYVxLovZEtdirZPuFQiTRnEVumdEv/bHhGLqjJw==~1; Domain=.ebay.com.au; Path=/; Expires=Tue, 20 Aug 2024 11:05:38 GMT; Max-Age=6164; Secure
POST

https://www.ebay.com.au/gdpr/submitGDPRData?srt=01000900000050513c91813c9eb749ebc254a742ab88236dbd982698c98b3ad891ed02956598bde351f2199042009dafd3e02e806d186c9ecab47d14a8e51c56f7c06dde7ba4706f88bf63d6e20433e0e740bb40ac63e7&correlation=si%3D6f08dc9c1910acf39cc05acaffff2dfa%2Cc%3D1%2CoperationId%3D4375194%2Ctrk-gflgs%3DQA**&v=2

msedge.exe

Remote address:

2.18.109.98:443

Request

POST /gdpr/submitGDPRData?srt=01000900000050513c91813c9eb749ebc254a742ab88236dbd982698c98b3ad891ed02956598bde351f2199042009dafd3e02e806d186c9ecab47d14a8e51c56f7c06dde7ba4706f88bf63d6e20433e0e740bb40ac63e7&correlation=si%3D6f08dc9c1910acf39cc05acaffff2dfa%2Cc%3D1%2CoperationId%3D4375194%2Ctrk-gflgs%3DQA**&v=2 HTTP/2.0
host: www.ebay.com.au
content-length: 18
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
sec-ch-ua-model:
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NTc2ODE3MCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMyUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMiU3RA==
cookie: ds2=sotr/bGiAQzzzzzzz^
cookie: dp1=bbl/GB6a86c76e^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+5FQzRSMEFOAMoAIGqGx242ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGd2OUCuMuYijGMP7eo+Id1/LrM99+dX
cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQlhp7XAxooGmRAQAAda4YbxhWM2JXL6vlGDkfyVAGZ1nze7oyM0c7sWTVUT2fcxWKhl0mvArkAp57aJ7xuhyPQwvz/eLrBybdb13QgRx54N3twn+mdgY5ZWPwGm0i7xX1VXe/4rqPgw2ulLWyMoUg8yc5c6cHXDkwIhfcUtAJokS6AK/SFD9WTf6IY1kybuTVjxMot6Pa/mJmu0RDRoqwarQqYVxLovZEtdirZPuFQiTRnEVumdEv/bHhGLqjJw==~1

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
content-security-policy-report-only: style-src 'self' 'unsafe-inline' data: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.cn *.gstatic.com *.googleapis.com; connect-src 'self' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au data: *.google.com *.google-analytics.com *.ucweb.com *.googleapis.com *.adform.com *.adition.com beeswax.com *.bidswitch.com *.criteo.com *.gstatic.com *.dotomi.com *.indexexchange.com *.rubiconproject.com *.adroll.com *.openx.com *.vtracy.de *.pubmatic.com *.quantcast.com rtbhouse.com *.amazonaws.com *.adnxs.com *.yahoo.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebaystatic.cn blob: data: *.ebayrtm.com *.paypal.com *.google-analytics.com *.cloudflare.com *.googletagmanager.com *.google.com *.googleapis.com; frame-ancestors 'self' *.ebay.com *.ebay.com.au *.ebay.au; default-src 'self' blob: data: wss: mediastream: *.ebay.com *.ebay.com.au *.ebay.au *.ebaystatic.com *.ebaystatic.com.au *.ebaystatic.au *.ebayimg.com *.bluekai.com *.paypal.com *.gstatic.com *.cloudflare.com *.google.com *.google-analytics.com; report-uri https://monitor.ebay.com/csp-report/gdpr/gdpr_post?id=818171462930616273&rid=t6davu7%3F%3Ctofacsw2*soujy(rbpv6770-1916f18af15-0x202#pd
access-control-allow-credentials: true
access-control-allow-origin: https://www.ebay.com.au
content-type: application/json; charset=utf-8
etag: W/"56e-KSVA+EKx8PvDV0XJyWUqX+mSjPQ"
rlogid: t6davu7%3F%3Ctofacsw2*soujy(rbpv6770-1916f18af15-0x202
content-encoding: gzip
x-envoy-upstream-service-time: 229
server: ebay-proxy-server
strict-transport-security: max-age=31536000
date: Tue, 20 Aug 2024 09:22:54 GMT
vary: Accept-Encoding
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ds2=; Domain=.ebay.com.au; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; SameSite=None; Secure
set-cookie: dp1=bbl/GB6a86c76e^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+5FQzRSMEFOAMoAIGqGx242ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAJmxGd2MTBP+nhAPXKXSHeRONekaiLpJgHa0g**; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: ds2=asotr/bGiAQzzzzzzz^; Domain=.ebay.com.au; Path=/; SameSite=None; Secure
set-cookie: dp1=bbl/GB6a86c76e^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+5FQzRSMEFOAMoAIGqGx242ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGd2OUCuMuYijGMP7eo+Id1/LrM99+dX; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:22:54 GMT; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQlhp7XB1ooGmRAQAAq68Ybxg2At2QIujCyWUp1WDV6kMLbggt5z6Anheh8Q5C5qMuobli56StZpOd8FyEjAXGGN5r5W12hurCJ3sUyhHNz71wz/Fe2CrhlO5f/c3VzJZTcAAc5fVFJ0VuWGFBhih0VxQrWnDN8oiuWLzbY1daYXY2MJuhToMFsoGBmbJqQsGUvBZiq0B/bPpk4+i+4rTap00yescQ2LKfUr5Mys/reOG+DvPXveQCSHPIeIsBvg==~1; Domain=.ebay.com.au; Path=/; Expires=Tue, 20 Aug 2024 11:05:38 GMT; Max-Age=6164; Secure
DNS

35.17.240.157.in-addr.arpa

Remote address:

8.8.8.8:53

Request

35.17.240.157.in-addr.arpa

IN PTR

Response

35.17.240.157.in-addr.arpa

IN PTR

edge-star-mini-shv-01-zrh1facebookcom
DNS

98.109.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

98.109.18.2.in-addr.arpa

IN PTR

Response

98.109.18.2.in-addr.arpa

IN PTR

a2-18-109-98deploystaticakamaitechnologiescom
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

173.222.211.40

a1851.dscg2.akamai.net

IN A

173.222.211.41
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

173.222.211.41

a1851.dscg2.akamai.net

IN A

173.222.211.40
DNS

h.clarity.ms

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
POST

https://h.clarity.ms/collect

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 143
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:23:36 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
DNS

pulsar.ebay.com.au

Request

pulsar.ebay.com.au

IN A

Response

pulsar.ebay.com.au

IN CNAME

pulsar.ebay.com

pulsar.ebay.com

IN CNAME

pulsar.ebay.com.edgekey.net

pulsar.ebay.com.edgekey.net

IN CNAME

e207850.a.akamaiedge.net

e207850.a.akamaiedge.net

IN A

104.117.183.90

e207850.a.akamaiedge.net

IN A

104.117.183.131

e207850.a.akamaiedge.net

IN A

104.117.183.107

e207850.a.akamaiedge.net

IN A

104.117.183.96

e207850.a.akamaiedge.net

IN A

104.117.183.24

e207850.a.akamaiedge.net

IN A

104.117.183.106

e207850.a.akamaiedge.net

IN A

104.117.183.129

e207850.a.akamaiedge.net

IN A

104.117.183.27

e207850.a.akamaiedge.net

IN A

104.117.183.130
POST

https://pulsar.ebay.com.au/plsr/mpe/0/DFLT/9?

Request

POST /plsr/mpe/0/DFLT/9? HTTP/2.0
host: pulsar.ebay.com.au
content-length: 329
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.ebay.com.au
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.ebay.com.au/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ak_bmsc=08E73610C7F8773D5E995D61822DCB48~000000000000000000000000000000~YAAQohoSAve+U2ORAQAAE90Ibxhn4Ad3KpOlkw96uiwei7hJ3fvSKeQ+FVjDOKGgOXK7Zbm6nmPW0ban54RfIBa1TDu6ydkN7IvXIMyMK88bwB7m/Jef/8ChdKe6By+1k1VCD+6rYS4l9E9ZkLEL4L2IfMfkpVYAFSxBrIvENu88xz/pM1V8/cwyoeDER9o3FfGAuPL+Mt61OzSuWlH0rTqAuqPMOkEiHL0QF/K41tfsSQDAjZTshGI/zRpO9mATmTXqiANSCpRknPCcbMl+RW6W+YRw1UwysGYyn0XeyK9x/wo9VKrmY9KmtaUJ7zPTp5TxMilQkHWNSmOEo9bpBbVwNvi6GYl5p68Q3U2wP8ZXDldolDaH6zZAVNoKe1Lau8gIeoU/OPNc0uE=
cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk
cookie: __deba=LeNwE1HrsrhAT3cxOLmPhJFRHwl5m22lIpVN4AE4GhcdSl7ybj8hE7MwLIPdai1AXR8UW1J2_XMwSXzXGqPFGNDpJ-SjNybb8cL9hL4Pn4kHBk7fjNuwZVMp41jKhP-2wx2UER9QfsNSNBp7PxWylw==
cookie: __uzma=da701079-ca77-4b45-801b-49c476c1ba12
cookie: __uzmb=1724144738
cookie: __uzmc=704381016017
cookie: __uzmd=1724144738
cookie: __uzme=7189
cookie: __uzmf=7f6000bc61e96a-14e7-4bee-ac71-f7a78513533717241447384970-949bd91c7ce20a6c10
cookie: utag_main__sn=1
cookie: utag_main__se=1%3Bexp-session
cookie: utag_main__ss=1%3Bexp-session
cookie: utag_main__st=1724146538523%3Bexp-session
cookie: utag_main_ses_id=1724144738523%3Bexp-session
cookie: utag_main__pn=1%3Bexp-session
cookie: _gcl_au=1.1.1723759538.1724144739
cookie: AMP_MKTG_f93443b04c=JTdCJTdE
cookie: _pin_unauth=dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA
cookie: _fbp=fb.2.1724144739275.197283122760891003
cookie: AMP_f93443b04c=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI0NTYxOTYxMy1jOTZmLTQyNzAtOWZjNC0xOTNlZWQ4NmIzMmUlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzI0MTQ0NzM5MDcxJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcyNDE0NTc2ODE3MCUyQyUyMmxhc3RFdmVudElkJTIyJTNBMyUyQyUyMnBhZ2VDb3VudGVyJTIyJTNBMiU3RA==
cookie: dp1=bbl/GB6a86c76e^
cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2ilk+5FQzRSMEFOAMoAIGqGx242ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAFmxGd2OUCuMuYijGMP7eo+Id1/LrM99+dX
cookie: bm_sv=B47CEF9265398FA9429944B87932BB86~YAAQlhp7XB1ooGmRAQAAq68Ybxg2At2QIujCyWUp1WDV6kMLbggt5z6Anheh8Q5C5qMuobli56StZpOd8FyEjAXGGN5r5W12hurCJ3sUyhHNz71wz/Fe2CrhlO5f/c3VzJZTcAAc5fVFJ0VuWGFBhih0VxQrWnDN8oiuWLzbY1daYXY2MJuhToMFsoGBmbJqQsGUvBZiq0B/bPpk4+i+4rTap00yescQ2LKfUr5Mys/reOG+DvPXveQCSHPIeIsBvg==~1
cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E
cookie: ds2=asotr/bGiAQzzzzzzz^sotr/bGiAQzzzzzzz^

Response

HTTP/2.0 200

x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ch: sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-ua-full-version
rlogid: t6bkbbp%3F%3Ckuvgig%60u*etjws(rbpv6601-1916f195e0e-0x1202
x-envoy-upstream-service-time: 57
server: ebay-proxy-server
x-ebay-pop-id: SLBLVSAZ01
expires: Tue, 20 Aug 2024 09:23:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Aug 2024 09:23:39 GMT
content-length: 0
set-cookie: s=CgAD4ACBmxa3hNmYwOGRjOWMxOTEwYWNmMzljYzA1YWNhZmZmZjJkZmFPXuBk; Domain=.ebay.com.au; Path=/; HttpOnly; Secure
set-cookie: dp1=bbl/GB6a86c79b^; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:23:39 GMT; Secure
set-cookie: nonsession=BAQAAAZBR14g6AAaAADMAB2illBtFQzRSMEFOAMoAIGqGx5s2ZjA4ZGM5YzE5MTBhY2YzOWNjMDVhY2FmZmZmMmRmYQDLAAJmxGejMTDqKdkT/4CNuSfhfWlTaVJqsIbMrQ**; Domain=.ebay.com.au; Path=/; Expires=Thu, 20 Aug 2026 09:23:39 GMT; HttpOnly; Secure
set-cookie: ebay=%5Esbf%3D%23000000%5Epsi%3DACNzgfhE*%5E; Domain=.ebay.com.au; Path=/; Secure
set-cookie: ds2=asotr/bGiAQzzzzzzz^; Domain=.ebay.com.au; Path=/; SameSite=None; Secure
strict-transport-security: max-age=31536000
DNS

90.183.117.104.in-addr.arpa

Request

90.183.117.104.in-addr.arpa

IN PTR

Response

90.183.117.104.in-addr.arpa

IN PTR

a104-117-183-90deploystaticakamaitechnologiescom
DNS

nortiniolosto.com

Request

nortiniolosto.com

IN A

Response
DNS

www.youtube.com

Request

www.youtube.com

IN A

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN A

216.58.214.174

youtube-ui.l.google.com

IN A

172.217.20.206

youtube-ui.l.google.com

IN A

142.250.75.238

youtube-ui.l.google.com

IN A

172.217.20.174

youtube-ui.l.google.com

IN A

142.250.179.78

youtube-ui.l.google.com

IN A

142.250.201.174

youtube-ui.l.google.com

IN A

142.250.179.110

youtube-ui.l.google.com

IN A

142.250.74.238

youtube-ui.l.google.com

IN A

142.250.178.142
DNS

h.clarity.ms

Request

h.clarity.ms

IN A

Response

h.clarity.ms

IN CNAME

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com

IN A

51.8.64.151
POST

https://h.clarity.ms/collect

Request

POST /collect HTTP/1.1
Host: h.clarity.ms
Connection: keep-alive
Content-Length: 203
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://apps.microsoft.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: empty
Referer: https://apps.microsoft.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Tue, 20 Aug 2024 09:24:37 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://apps.microsoft.com
Vary: Origin
Request-Context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
DNS

freedesktopsoft.com

Request

freedesktopsoft.com

IN A

Response

freedesktopsoft.com

IN A

78.46.117.95
DNS

freedesktopsoft.com

Request

freedesktopsoft.com

IN A

Response

freedesktopsoft.com

IN A

78.46.117.95
GET

http://freedesktopsoft.com/button.css

Request

GET /button.css HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:46 GMT
Server: Apache
Upgrade: h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 09 Apr 2019 09:50:16 GMT
ETag: "adc-58615e155e1d6"
Accept-Ranges: bytes
Content-Length: 2780
Keep-Alive: timeout=15, max=100
Content-Type: text/css
GET

http://freedesktopsoft.com/images/menubackgroundside2.jpg

Request

GET /images/menubackgroundside2.jpg HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:47 GMT
Server: Apache
Last-Modified: Tue, 09 Apr 2019 09:50:49 GMT
ETag: "568-58615e34f8b6f"
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
GET

http://freedesktopsoft.com/butterflyondesktoplike.html

Request

GET /butterflyondesktoplike.html HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:46 GMT
Server: Apache
Upgrade: h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=15, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
GET

http://freedesktopsoft.com/main.css

Request

GET /main.css HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:46 GMT
Server: Apache
Last-Modified: Tue, 09 Apr 2019 09:50:19 GMT
ETag: "1095-58615e1833ae5"
Accept-Ranges: bytes
Content-Length: 4245
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: text/css
GET

http://freedesktopsoft.com/slider/slider.css

Request

GET /slider/slider.css HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:46 GMT
Server: Apache
Last-Modified: Tue, 09 Apr 2019 09:50:56 GMT
ETag: "1999-58615e3ba8951"
Accept-Ranges: bytes
Content-Length: 6553
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: text/css
GET

http://freedesktopsoft.com/images/superman_likeus.gif

Request

GET /images/superman_likeus.gif HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:47 GMT
Server: Apache
Last-Modified: Tue, 09 Apr 2019 09:50:50 GMT
ETag: "7b5f-58615e3597e3e"
Accept-Ranges: bytes
Content-Length: 31583
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: image/gif
GET

http://freedesktopsoft.com/slider/slider.js

Request

GET /slider/slider.js HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:46 GMT
Server: Apache
Upgrade: h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 09 Apr 2019 09:50:56 GMT
ETag: "bfc-58615e3bad770"
Accept-Ranges: bytes
Content-Length: 3068
Keep-Alive: timeout=15, max=100
Content-Type: application/javascript
GET

http://freedesktopsoft.com/images/bodybackground.png

Request

GET /images/bodybackground.png HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/main.css
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:47 GMT
Server: Apache
Last-Modified: Tue, 09 Apr 2019 09:50:46 GMT
ETag: "2e95-58615e31f7345"
Accept-Ranges: bytes
Content-Length: 11925
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: image/png
GET

http://freedesktopsoft.com/images/menubackground2.jpg

Request

GET /images/menubackground2.jpg HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:47 GMT
Server: Apache
Upgrade: h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 09 Apr 2019 09:50:48 GMT
ETag: "41aa-58615e33bc513"
Accept-Ranges: bytes
Content-Length: 16810
Keep-Alive: timeout=15, max=100
Content-Type: image/jpeg
GET

http://freedesktopsoft.com/images/banner3.jpg

Request

GET /images/banner3.jpg HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:47 GMT
Server: Apache
Upgrade: h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 09 Apr 2019 09:50:45 GMT
ETag: "a57e-58615e3163bf6"
Accept-Ranges: bytes
Content-Length: 42366
Keep-Alive: timeout=15, max=100
Content-Type: image/jpeg
GET

http://freedesktopsoft.com/images/superman1.png

Request

GET /images/superman1.png HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: __utma=49514865.1782145332.1724145886.1724145886.1724145886.1; __utmc=49514865; __utmz=49514865.1724145886.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; __utmb=49514865.1.10.1724145886; __gads=ID=3986e8d58c2ce192:T=1724145887:RT=1724145887:S=ALNI_MYYzFTvgIrQAAJgMtswgKIsJSMEGg; __gpi=UID=00000ed17325ac4c:T=1724145887:RT=1724145887:S=ALNI_MbQpQnRvJnxUiPKMQwugaz7vQbrJg; __eoi=ID=3ff24bbefa157412:T=1724145887:RT=1724145887:S=AA-AfjblRYuLSNNaIZ9Fvicr8Stg

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:49 GMT
Server: Apache
Last-Modified: Tue, 09 Apr 2019 09:50:50 GMT
ETag: "777e-58615e3586500"
Accept-Ranges: bytes
Content-Length: 30590
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: image/png
GET

http://freedesktopsoft.com/favicon.ico

Request

GET /favicon.ico HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: __utma=49514865.1782145332.1724145886.1724145886.1724145886.1; __utmc=49514865; __utmz=49514865.1724145886.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; __utmb=49514865.1.10.1724145886; __gads=ID=3986e8d58c2ce192:T=1724145887:RT=1724145887:S=ALNI_MYYzFTvgIrQAAJgMtswgKIsJSMEGg; __gpi=UID=00000ed17325ac4c:T=1724145887:RT=1724145887:S=ALNI_MbQpQnRvJnxUiPKMQwugaz7vQbrJg; __eoi=ID=3ff24bbefa157412:T=1724145887:RT=1724145887:S=AA-AfjblRYuLSNNaIZ9Fvicr8Stg; FCNEC=%5B%5B%22AKsRol9KIbZHnwblzaQzCl5IwcOK5JK3ChiL5IcOUFt8JAzp9GqE0Er0CtyOK42qK2PZa-DCH05ARec40NmS18aQWZviSm02zfMuj93XNEoOr7iIQ-uA2dqOQOOXr9OP67zU4CGf6SMHRTHmZ5zqeQkC5biURYCC6A%3D%3D%22%5D%5D

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:51 GMT
Server: Apache
Last-Modified: Tue, 09 Apr 2019 09:50:17 GMT
ETag: "47e-58615e1638dbe"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
GET

http://freedesktopsoft.com/images/banner_bg2.jpg

Request

GET /images/banner_bg2.jpg HTTP/1.1
Host: freedesktopsoft.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/butterflyondesktoplike.html
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Tue, 20 Aug 2024 09:24:47 GMT
Server: Apache
Upgrade: h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 09 Apr 2019 09:50:46 GMT
ETag: "a00-58615e31bd96c"
Accept-Ranges: bytes
Content-Length: 2560
Keep-Alive: timeout=15, max=100
Content-Type: image/jpeg
DNS

connect.facebook.net

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

157.240.17.15
DNS

connect.facebook.net

Request

connect.facebook.net

IN A
GET

http://www.google-analytics.com/ga.js

Request

GET /ga.js HTTP/1.1
Host: www.google-analytics.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Referer: http://freedesktopsoft.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Tue, 20 Aug 2024 07:50:04 GMT
Expires: Tue, 20 Aug 2024 09:50:04 GMT
Cache-Control: public, max-age=7200
Age: 5683
Last-Modified: Tue, 12 Dec 2023 18:09:08 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
GET

http://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1437329552&utmhn=freedesktopsoft.com&utmcs=UTF-8&utmsr=1280x720&utmvp=1263x609&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Butterfly%20On%20Desktop%20-%20Freeware%20software&utmhid=1310108023&utmr=-&utmp=%2Fbutterflyondesktoplike.html&utmht=1724145886246&utmac=UA-39364152-1&utmcc=__utma%3D49514865.1782145332.1724145886.1724145886.1724145886.1%3B%2B__utmz%3D49514865.1724145886.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1402270698&utmredir=1&utmu=qBAAAAAAAAAAAAAAAAAAAAAE~

Request

GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1437329552&utmhn=freedesktopsoft.com&utmcs=UTF-8&utmsr=1280x720&utmvp=1263x609&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Butterfly%20On%20Desktop%20-%20Freeware%20software&utmhid=1310108023&utmr=-&utmp=%2Fbutterflyondesktoplike.html&utmht=1724145886246&utmac=UA-39364152-1&utmcc=__utma%3D49514865.1782145332.1724145886.1724145886.1724145886.1%3B%2B__utmz%3D49514865.1724145886.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1402270698&utmredir=1&utmu=qBAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Referer: http://freedesktopsoft.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Date: Tue, 20 Aug 2024 09:24:47 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
GET

https://connect.facebook.net/en_US/all.js

Request

GET /en_US/all.js HTTP/2.0
host: connect.facebook.net
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://freedesktopsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://connect.facebook.net/en_US/all.js?hash=fe8ca152795e2efe23954eed73d4944e

Request

GET /en_US/all.js?hash=fe8ca152795e2efe23954eed73d4944e HTTP/2.0
host: connect.facebook.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: http://freedesktopsoft.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: http://freedesktopsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/yg/l/0,cross/k11o63V6VuL.css?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/yg/l/0,cross/k11o63V6VuL.css?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/yj/r/T__PIHCn9St.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/yj/r/T__PIHCn9St.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/y_/r/IdaDUxNeWGd.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/y_/r/IdaDUxNeWGd.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3iEpO4/yT/l/en_US/Pafuruwv1Gm.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3iEpO4/yT/l/en_US/Pafuruwv1Gm.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/yh/r/Bk_doTK6BN4.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/yh/r/Bk_doTK6BN4.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/yw/r/RGL4cj21k7i.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/yw/r/RGL4cj21k7i.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://scontent.xx.fbcdn.net/v/t39.30808-6/301170673_403198485251205_7125298664162257715_n.jpg?stp=dst-jpg_p173x172&_nc_cat=103&ccb=1-7&_nc_sid=4cb600&_nc_ohc=5PISmviyneYQ7kNvgH995zH&_nc_ht=scontent.xx&edm=ANSO7JkEAAAA&oh=00_AYAhy8S2l1jWhlV8eBwJlo7zwDAfmuOLMwM50A1JFqXfNA&oe=66CA23DA

Request

GET /v/t39.30808-6/301170673_403198485251205_7125298664162257715_n.jpg?stp=dst-jpg_p173x172&_nc_cat=103&ccb=1-7&_nc_sid=4cb600&_nc_ohc=5PISmviyneYQ7kNvgH995zH&_nc_ht=scontent.xx&edm=ANSO7JkEAAAA&oh=00_AYAhy8S2l1jWhlV8eBwJlo7zwDAfmuOLMwM50A1JFqXfNA&oe=66CA23DA HTTP/2.0
host: scontent.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://scontent.xx.fbcdn.net/v/t39.30808-1/301634344_403198488584538_107440535983520244_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=104&ccb=1-7&_nc_sid=6738e8&_nc_ohc=6CoUoF0Ru2wQ7kNvgHU0GYw&_nc_ht=scontent.xx&edm=ANSO7JkEAAAA&oh=00_AYCqYqhCdI03u6DjWN5gjfVYO7Sd5AHpXAhk7PeFRr7QAg&oe=66CA35F0

Request

GET /v/t39.30808-1/301634344_403198488584538_107440535983520244_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=104&ccb=1-7&_nc_sid=6738e8&_nc_ohc=6CoUoF0Ru2wQ7kNvgHU0GYw&_nc_ht=scontent.xx&edm=ANSO7JkEAAAA&oh=00_AYCqYqhCdI03u6DjWN5gjfVYO7Sd5AHpXAhk7PeFRr7QAg&oe=66CA35F0 HTTP/2.0
host: scontent.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/yw/r/UXtr_j2Fwe-.png

Request

GET /rsrc.php/v3/yw/r/UXtr_j2Fwe-.png HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://static.xx.fbcdn.net/rsrc.php/v3/yg/l/0,cross/k11o63V6VuL.css?_nc_x=Ij3Wp8lg5Kz
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/ys/r/qpVxCB0ilzb.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/ys/r/qpVxCB0ilzb.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.xx.fbcdn.net/rsrc.php/v3/ys/r/tmMcf9mkr-x.js?_nc_x=Ij3Wp8lg5Kz

Request

GET /rsrc.php/v3/ys/r/tmMcf9mkr-x.js?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

95.117.46.78.in-addr.arpa

Request

95.117.46.78.in-addr.arpa

IN PTR

Response

95.117.46.78.in-addr.arpa

IN PTR

www366your-serverde
DNS

95.117.46.78.in-addr.arpa

Request

95.117.46.78.in-addr.arpa

IN PTR

Response

95.117.46.78.in-addr.arpa

IN PTR

www366your-serverde
DNS

tpc.googlesyndication.com

Request

tpc.googlesyndication.com

IN A

Response

tpc.googlesyndication.com

IN A

142.250.179.65
GET

https://tpc.googlesyndication.com/simgad/15167639344643361423?sqp=4sqPyQQrQikqJwhfEAEdAAC0QiABKAEwCTgDQPCTCUgAUAFYAWBfcAJ4AcUBLbKdPg&rs=AOga4qkZLUtPKJJMB_1MZzNMig4gw06f4w

Request

GET /simgad/15167639344643361423?sqp=4sqPyQQrQikqJwhfEAEdAAC0QiABKAEwCTgDQPCTCUgAUAFYAWBfcAJ4AcUBLbKdPg&rs=AOga4qkZLUtPKJJMB_1MZzNMig4gw06f4w HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20240815/r20110914/client/qs_click_protection_fy2021.js

Request

GET /pagead/js/r20240815/r20110914/client/qs_click_protection_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/images/transparent.png

Request

GET /pagead/images/transparent.png HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20240815/r20110914/abg_lite_fy2021.js

Request

GET /pagead/js/r20240815/r20110914/abg_lite_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20240815/r20110914/client/window_focus_fy2021.js

Request

GET /pagead/js/r20240815/r20110914/client/window_focus_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20240815/r20110914/client/one_click_handler_one_afma_fy2021.js

Request

GET /pagead/js/r20240815/r20110914/client/one_click_handler_one_afma_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20240815/r20110914/client/load_preloaded_resource_fy2021.js

Request

GET /pagead/js/r20240815/r20110914/client/load_preloaded_resource_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

www.google.com

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.20.196
DNS

fundingchoicesmessages.google.com

Request

fundingchoicesmessages.google.com

IN A

Response

fundingchoicesmessages.google.com

IN CNAME

www3.l.google.com

www3.l.google.com

IN A

216.58.214.174
GET

https://fundingchoicesmessages.google.com/i/ca-pub-0235095201432841?href=http%3A%2F%2Ffreedesktopsoft.com%2Fbutterflyondesktoplike.html&ers=2

Request

GET /i/ca-pub-0235095201432841?href=http%3A%2F%2Ffreedesktopsoft.com%2Fbutterflyondesktoplike.html&ers=2 HTTP/2.0
host: fundingchoicesmessages.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://freedesktopsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: NID=516=lqhyP8eJJ2CaXi0SDqfG-WK3BeyBW_jnmx43hP1LQXwgeR4QGA3UnjKYKvGfIjY2E7EA6d8Rhlw0bw8f6J3gNt3r1AhU0ixl7YUgYjZP10Qh_mK9aqLBB3JJUcjATd06UN19QPYgIDggmAnQdwm_aH5MDXmN9LQ4sg8b9Pw4gvG_Z1h28z-TwOy4vOOGTQ
DNS

65.179.250.142.in-addr.arpa

Request

65.179.250.142.in-addr.arpa

IN PTR

Response

65.179.250.142.in-addr.arpa

IN PTR

par21s19-in-f11e100net
DNS

66.179.250.142.in-addr.arpa

Request

66.179.250.142.in-addr.arpa

IN PTR

Response

66.179.250.142.in-addr.arpa

IN PTR

par21s19-in-f21e100net
DNS

www.facebook.com

Request

www.facebook.com

IN A

Response

www.facebook.com

IN CNAME

star-mini.c10r.facebook.com

star-mini.c10r.facebook.com

IN A

157.240.17.35
DNS

ep1.adtrafficquality.google

Request

ep1.adtrafficquality.google

IN A

Response

ep1.adtrafficquality.google

IN A

216.58.214.162
GET

https://www.facebook.com/plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfa9d14d16e7c91254%26domain%3Dfreedesktopsoft.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ffreedesktopsoft.com%252Fff099cc1f7f934bf0%26relation%3Dparent.parent&container_width=0&header=false&href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FFree-Desktop-Software%2F471766272880973&locale=en_US&sdk=joey&show_faces=true&stream=false&width=450

Request

GET /plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfa9d14d16e7c91254%26domain%3Dfreedesktopsoft.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ffreedesktopsoft.com%252Fff099cc1f7f934bf0%26relation%3Dparent.parent&container_width=0&header=false&href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FFree-Desktop-Software%2F471766272880973&locale=en_US&sdk=joey&show_faces=true&stream=false&width=450 HTTP/2.0
host: www.facebook.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: http://freedesktopsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.facebook.com/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfae16b686ce55a5d9%26domain%3Dfreedesktopsoft.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ffreedesktopsoft.com%252Fff099cc1f7f934bf0%26relation%3Dparent.parent&color_scheme=dark&container_width=960&href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FFree-Desktop-Software%2F471766272880973&layout=button_count&locale=en_US&sdk=joey&send=false&show_faces=true&width=100

Request

GET /plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfae16b686ce55a5d9%26domain%3Dfreedesktopsoft.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ffreedesktopsoft.com%252Fff099cc1f7f934bf0%26relation%3Dparent.parent&color_scheme=dark&container_width=960&href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FFree-Desktop-Software%2F471766272880973&layout=button_count&locale=en_US&sdk=joey&send=false&show_faces=true&width=100 HTTP/2.0
host: www.facebook.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: http://freedesktopsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20240815&st=env

Request

GET /getconfig/sodar?sv=200&tid=gda&tv=r20240815&st=env HTTP/2.0
host: ep1.adtrafficquality.google
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: http://freedesktopsoft.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: http://freedesktopsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

162.214.58.216.in-addr.arpa

Request

162.214.58.216.in-addr.arpa

IN PTR

Response

162.214.58.216.in-addr.arpa

IN PTR

mad01s26-in-f21e100net

162.214.58.216.in-addr.arpa

IN PTR

mad01s26-in-f162�H

162.214.58.216.in-addr.arpa

IN PTR

par10s42-in-f2�H
DNS

static.xx.fbcdn.net

Request

static.xx.fbcdn.net

IN A

Response

static.xx.fbcdn.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

157.240.17.15
DNS

scontent.xx.fbcdn.net

Request

scontent.xx.fbcdn.net

IN A

Response

scontent.xx.fbcdn.net

IN A

157.240.17.15
DNS

scontent.xx.fbcdn.net

Request

scontent.xx.fbcdn.net

IN A
GET

https://ep2.adtrafficquality.google/sodar/sodar2.js

Request

GET /sodar/sodar2.js HTTP/2.0
host: ep2.adtrafficquality.google
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://freedesktopsoft.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

play.google.com

Request

play.google.com

IN A

Response

play.google.com

IN A

142.250.201.174
DNS

www.facebook.com

Request

www.facebook.com

IN A

Response

www.facebook.com

IN CNAME

star-mini.c10r.facebook.com

star-mini.c10r.facebook.com

IN A

157.240.196.35
DNS

cxcs.microsoft.net

Request

cxcs.microsoft.net

IN A

Response

cxcs.microsoft.net

IN CNAME

cxcs.microsoft.net.edgekey.net

cxcs.microsoft.net.edgekey.net

IN CNAME

e3230.b.akamaiedge.net

e3230.b.akamaiedge.net

IN A

23.62.195.195
DNS

cxcs.microsoft.net

Request

cxcs.microsoft.net

IN A

Response

cxcs.microsoft.net

IN CNAME

cxcs.microsoft.net.edgekey.net

cxcs.microsoft.net.edgekey.net

IN CNAME

e3230.b.akamaiedge.net

e3230.b.akamaiedge.net

IN A

23.62.195.195
GET

https://cxcs.microsoft.net/api/settings/en-US/xml/settings-tipset?release=20h1&sku=Professional&platform=desktop

Request

GET /api/settings/en-US/xml/settings-tipset?release=20h1&sku=Professional&platform=desktop HTTP/2.0
host: cxcs.microsoft.net
accept-encoding: gzip, deflate

Response

HTTP/2.0 404

content-type: text/html
content-length: 26
date: Tue, 20 Aug 2024 09:27:23 GMT
POST

https://www.bing.com/RelatedSearch?addfeaturesnoexpansion=relatedsearch&mkt=en-US

Request

POST /RelatedSearch?addfeaturesnoexpansion=relatedsearch&mkt=en-US HTTP/2.0
host: www.bing.com
accept-encoding: gzip, deflate
content-length: 1488
content-type: application/json; charset=UTF-8
cache-control: no-cache

Response

HTTP/2.0 200

content-length: 327
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 66c4617b3cc5409084a16f3fba60129a
x-as-setsessionmarket: en-US
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 20 Aug 2024 09:27:23 GMT
set-cookie: MUID=1B808E46188B68EF38A49AA719B86935; domain=.bing.com; expires=Sun, 14-Sep-2025 09:27:23 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1B808E46188B68EF38A49AA719B86935; expires=Sun, 14-Sep-2025 09:27:23 GMT; path=/
set-cookie: _EDGE_S=F=1&SID=3D2CF27C11816AEE355FE69D10B26B88&mkt=en-US; domain=.bing.com; path=/
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 14-Sep-2025 09:27:23 GMT; path=/
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Thu, 20-Aug-2026 09:27:23 GMT; path=/
set-cookie: SRCHUID=V=2&GUID=B32A83DEB2394E938CB2C6AA767981CF&dmnchg=1; domain=.bing.com; expires=Thu, 20-Aug-2026 09:27:23 GMT; path=/
set-cookie: SRCHUSR=DOB=20240820; domain=.bing.com; expires=Thu, 20-Aug-2026 09:27:23 GMT; path=/
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Thu, 20-Aug-2026 09:27:23 GMT; path=/
set-cookie: _SS=SID=3D2CF27C11816AEE355FE69D10B26B88; domain=.bing.com; path=/
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.e581655f.1724146043.2cf00b26
DNS

195.195.62.23.in-addr.arpa

Request

195.195.62.23.in-addr.arpa

IN PTR

Response

195.195.62.23.in-addr.arpa

IN PTR

a23-62-195-195deploystaticakamaitechnologiescom
DNS

202.129.101.95.in-addr.arpa

Request

202.129.101.95.in-addr.arpa

IN PTR

Response

202.129.101.95.in-addr.arpa

IN PTR

a95-101-129-202deploystaticakamaitechnologiescom
DNS

nortiniolosto.com

Request

nortiniolosto.com

IN A

Response
DNS

nortiniolosto.com

Request

nortiniolosto.com

IN A

Response
DNS

googleads.g.doubleclick.net

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

216.58.214.66
DNS

github.com

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

github.com

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/Hydra.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Joke/Hydra.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:02 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7f6bfcdb006b18cefb90aef669757958"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F81D:165A3E:4571D1:4F93BA:66C462CD
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/Popup.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Joke/Popup.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:06 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7c19538f150a948d7337b16eb01f117d"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F81D:165A3E:4574FD:4F971D:66C462CE
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/Popup.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Joke/Popup.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:06 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7c19538f150a948d7337b16eb01f117d"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F81D:165A3E:45758B:4F97B8:66C462D2
DNS

collector.github.com

Request

collector.github.com

IN A

Response

collector.github.com

IN CNAME

glb-db52c2cf8be544.github.com

glb-db52c2cf8be544.github.com

IN A

140.82.112.22
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1192
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:41 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002568
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AB9A8D:F09CA7:66C462F5
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1214
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/Flasher.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:43 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003787
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AB9EBA:F0A208:66C462F5
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1224
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003285
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AB9F6F:F0A2DB:66C462F7
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1224
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001710
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AB9FC7:F0A356:66C462F8
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1128
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002993
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABA03A:F0A3F5:66C462F8
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1128
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002740
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABA03B:F0A3F8:66C462F8
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1113
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002614
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABA03D:F0A3FA:66C462F8
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1226
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002617
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABB2AA:F0BB98:66C462F8
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1088
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002228
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABB438:F0BDA4:66C46304
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1073
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:57 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.123453
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABB438:F0BDA5:66C46304
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1168
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:57 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003302
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABB484:F0BDF5:66C46304
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1478
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:33:57 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003035
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:ABB485:F0BDF6:66C46305
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1194
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:35:08 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002986
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AC3492:F15E5A:66C46305
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1116
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:35:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002610
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AC3686:F160DB:66C4634D
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1104
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:35:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003707
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AC3686:F160DA:66C4634C
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1089
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:35:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001809
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AC3689:F160DE:66C4634D
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1494
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:35:09 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002420
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AC3686:F160DC:66C4634D
POST

https://collector.github.com/github/collect

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1402
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Tue, 20 Aug 2024 09:35:49 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003439
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F7B1:3904CB:AC7D1C:F1B915:66C4634D
DNS

22.112.82.140.in-addr.arpa

Request

22.112.82.140.in-addr.arpa

IN PTR

Response

22.112.82.140.in-addr.arpa

IN PTR

lb-140-82-112-22-iadgithubcom
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/Flasher.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Joke/Flasher.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/Flasher.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"b30ac95b0c4c17139aa8f5cbf99d1d3a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2004
x-github-request-id: E3A5:113D03:B75846:CCF464:66C462F8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"deece13237a542ae4f4ce5316b85ed4c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2010
x-github-request-id: E3A5:113D03:B75846:CCF465:66C462F8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D
if-none-match: W/"deece13237a542ae4f4ce5316b85ed4c"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"deece13237a542ae4f4ce5316b85ed4c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: E3A5:113D03:B7586F:CCF490:66C462F8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D
if-none-match: W/"deece13237a542ae4f4ce5316b85ed4c"

Response

HTTP/2.0 304

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"deece13237a542ae4f4ce5316b85ed4c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-github-request-id: E3A5:113D03:B7587D:CCF4A6:66C462F8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Joke/CookieClickerHack.exe

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Joke/CookieClickerHack.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: E3A5:113D03:B758AE:CCF4DC:66C462F8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Joke/CookieClickerHack.exe

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Joke/CookieClickerHack.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:44 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7724b3480c11dc7b8821dfca80ae349b"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 438
x-github-request-id: E3A5:113D03:B758AE:CCF4DB:66C462F8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan

Request

GET /Da2dalus/The-MALWARE-Repo/tree/master/Trojan HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"44b8bb126f598ca7bc9404620412087e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1550
x-github-request-id: E3A5:113D03:B760E9:CCFD91:66C462F8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Trojan

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Trojan HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"05220f3c8deb8c7de10425f2762911d5"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 439
x-github-request-id: E3A5:113D03:B76147:CCFDFB:66C46304
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Trojan

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Trojan HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"049f73edb4121be896e3c152a54823b8"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 986
x-github-request-id: E3A5:113D03:B76148:CCFDFC:66C46304
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Trojan

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Trojan HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:33:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: E3A5:113D03:B76148:CCFDFD:66C46304
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:34:10 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d3ab8741ba99aa414a52283116dc844a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: E3A5:113D03:B76B84:CD08F9:66C46304
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:34:10 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d3ab8741ba99aa414a52283116dc844a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: E3A5:113D03:B76EC9:CD0C80:66C46312
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:34:10 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d3ab8741ba99aa414a52283116dc844a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: E3A5:113D03:B76FEE:CD0DBF:66C46316
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Trojan/MEMZ.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:34:10 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d3ab8741ba99aa414a52283116dc844a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: E3A5:113D03:B7705F:CD0E42:66C46317
DNS

api.github.com

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 228
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Joke/CookieClickerHack.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:33:44 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724150024
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: FAB7:1652CC:3B4C39:3F9172:66C462F8
POST

https://api.github.com/_private/browser/stats

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 680
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Trojan
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:33:56 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724150036
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: FAB7:1652CC:3B51C5:3F9741:66C462F8
DNS

github.com

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:35:09 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"54b63827a173a7aabde0368fa42598a2"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2277
x-github-request-id: EC6D:30384:1AF4C0B:1EA4A7B:66C4634C
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Trojan/Gas.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:35:09 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"f47e091871151af30afb8d366303ce47"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 439
x-github-request-id: EC6D:30384:1AF4C96:1EA4B0E:66C4634D
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Trojan/Gas.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 200

server: GitHub.com
date: Tue, 20 Aug 2024 09:35:10 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: EC6D:30384:1AF4C96:1EA4B0F:66C4634D
GET

https://github.com/Da2dalus/The-MALWARE-Repo/raw/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/raw/master/Trojan/Gas.exe HTTP/2.0
host: github.com
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:35:11 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/master/Trojan/Gas.exe
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: EC6D:30384:1AF4E07:1EA4C9F:66C4634E
GET

https://github.com/Da2dalus/The-MALWARE-Repo/raw/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/raw/master/Trojan/Gas.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:35:19 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/master/Trojan/Gas.exe
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: EC6D:30384:1AF5299:1EA519E:66C46350
GET

https://github.com/Da2dalus/The-MALWARE-Repo/raw/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/raw/master/Trojan/Gas.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC
cookie: _gh_sess=lUoKSDfDI3uISTCqz%2BYLljCFu8YzGPo2RHjWZkofepQpnpqxcXyYdIn9wqbc4TIPrqdi%2BkvbTyqgMs685IGq3z61nBR%2BAlXtYQ0IVcudTrr9lIKjzAujBY3zyBJfmqd%2FkleiPuoB6332mJvcQSsHZIBs5iYHh3vPKnnkw7LtlNJOEMl7ixJk%2FomGuSGTNt1l1Nc6gj5tHdev%2FfNuU8Wc%2Bjj6bjlidcc%2FV%2FBRwlb8T%2BIZpFFfbRZU%2B85A%2Bl0VTQNXHQLClIMMUOtDfJw4nynrxwzHji%2BLMkopMkTbiDuwSK0Gj9FM--XNUL1s8n%2F1pSQ7Ne--jt4g0D0Upr1CwI6V0bqIXQ%3D%3D

Response

HTTP/2.0 302

server: GitHub.com
date: Tue, 20 Aug 2024 09:35:19 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/master/Trojan/Gas.exe
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions proxy.enterprise.githubcopilot.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: EC6D:30384:1AF536F:1EA5272:66C46357
DNS

api.github.com

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
DNS

api.github.com

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 216
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:35:10 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724150110
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: F377:300A0:12F212:140EE6:66C4634E
GET

https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/master/Trojan/Gas.exe HTTP/2.0
host: raw.githubusercontent.com
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"14ffbc9e8fa3d2dfe36f1a4ae54ddd3f6df4e3f1b2b40f98015ac1f71a5cc04d"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 8F13:20ED7:349F48:42C49B:66C4634E
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:35:12 GMT
via: 1.1 varnish
x-served-by: cache-lon420089-LON
x-cache: MISS
x-cache-hits: 0
x-timer: S1724146512.163278,VS0,VE164
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: e563f612783ab8a7a3d3601c6b1f94006cc4aa3f
expires: Tue, 20 Aug 2024 09:40:12 GMT
source-age: 0
content-length: 18432
GET

https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/master/Trojan/Gas.exe

Request

GET /Da2dalus/The-MALWARE-Repo/master/Trojan/Gas.exe HTTP/2.0
host: raw.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://github.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"14ffbc9e8fa3d2dfe36f1a4ae54ddd3f6df4e3f1b2b40f98015ac1f71a5cc04d"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 27EF:3EF823:3E3205:4E4C3F:66C46355
accept-ranges: bytes
date: Tue, 20 Aug 2024 09:35:19 GMT
via: 1.1 varnish
x-served-by: cache-lon4269-LON
x-cache: MISS
x-cache-hits: 0
x-timer: S1724146519.231362,VS0,VE143
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 04e35f4578d2f809455e347c6f41a2ab01de16a7
expires: Tue, 20 Aug 2024 09:40:19 GMT
source-age: 0
content-length: 18432
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724146547988%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724146547988%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:35:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3f367a5c.1724146549.5a89480
POST

https://www.bing.com/fd/ls/lsp.aspx

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 715
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:35:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3f367a5c.1724146550.5a89579
POST

https://www.bing.com/fd/ls/lsp.aspx

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 819
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:35:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3f367a5c.1724146554.5a89e1f
POST

https://www.bing.com/fd/ls/lsp.aspx

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 704
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:35:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3f367a5c.1724146557.5a8a61d
POST

https://www.bing.com/fd/ls/lsp.aspx

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 661
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:35:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3f367a5c.1724146558.5a8a8eb
GET

https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724146559481%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

Request

GET /fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724146559481%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=github+virus&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=1D1BD82DA74764232D91CCCCA67D65BE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=CBC08C2E773943A98AF62ED4BB718B87&dmnchg=1
cookie: ak_bmsc=5EEFAD2B4B7486C988FC0B4E190EF35B~000000000000000000000000000000~YAAQ3oFlX2X5s1yRAQAAypkJbxjk7VO6aZUOLg7hmqbIuEojohrV4l/wrJjtMxOZp3u4Vz6832gghWY+0j5RdtnGkQoo8nTE4T/xOfJt6LivtQ7r3tIBBYU9T8PE/B/qgXtrgOUJmR+egBFNETOuVB+HnuL31owR9nf0g5oh9GRPjukxEvMYgbv4jLTfijh4wygiQzFC+W4tPG8Rmnl28sHV0Dm0RakT0ces1LNYGq95nqfFbAMgFuoXLaUkeFh9itspHg/+OmleZXVPp+2mKWQVtJrCSv+Q6F0KDch5kMUzH2D9hc/M6AjZcIaXEGam8RG3SMWX/ymWhsNBoazYOBLSsZmYwaaQbSKMSp5jG2H6uhjj3HuMQH1hbOOXkcV7bIU2A792YJI=
cookie: SRCHS=PC=U531
cookie: MUIDB=1D1BD82DA74764232D91CCCCA67D65BE
cookie: SRCHUSR=DOB=20240820&T=1724144785000
cookie: _Rwho=u=d&ts=2024-08-20
cookie: MSPTC=0NSnScdtvAAtrGZbmLsnzFVOS22EQL1RteFU7LGXVlo
cookie: BCP=AD=1&AL=1&SM=1
cookie: _EDGE_S=F=1&SID=044E27407A3C6EFA0F8B33A17B066F22&mkt=en-gb
cookie: ABDEF=V=13&ABDV=13&MRNB=1724145460065&MRB=0
cookie: bm_sv=0FB8162F72807C381666B5CDA101264D~YAAQxIFlX0uj8lyRAQAAacwVbxgPyq7UeTgO3mXnKYxh+/pw1BKUhKrFKQeL5Fxf3nAG7TK/tP1EUMpVzk0Afg8g/EpFg4YlMdjDRqT3TFvYTx+pjcOhq+pSHmZCk2bZzVKEtRByxORYtbUb3Wp8TnZ0qdg3FcB7MdjvcgpUE9Z0o9dhypJYUyC5D+G2XRtQftyh67N/Mx8croZmhVvXHEvS/9Mzj44xtwi3NzW9SNAfR/+JqVxCakQG1MJYow==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3818&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&HV=1724145461&WTS=63859741585&PRVCW=1280&PRVCH=609
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-08-20T07:00:00.0000000Z&lft=2024-08-20T00:00:00.0000000-07:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0001-01-01T00:00:00.0000000&rwflt=0001-01-01T00:00:00.0000000&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-08-20T09:19:48.9642591+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=044E27407A3C6EFA0F8B33A17B066F22&R=21&RB=0&GB=0&RG=200&RP=18&h5comp=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=53.18853759765625|LON=-4.058230400085449|N=Bangor%2C%20Gwynedd|ELT=4|&BLOCK=TS=240820091949
cookie: ipv6=hit=1724149189986

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Tue, 20 Aug 2024 09:36:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3f367a5c.1724146561.5a8af06
DNS

249.134.221.88.in-addr.arpa

Request

249.134.221.88.in-addr.arpa

IN PTR

Response

249.134.221.88.in-addr.arpa

IN PTR

a88-221-134-249deploystaticakamaitechnologiescom
DNS

249.134.221.88.in-addr.arpa

Request

249.134.221.88.in-addr.arpa

IN PTR

Response

249.134.221.88.in-addr.arpa

IN PTR

a88-221-134-249deploystaticakamaitechnologiescom
POST

https://api.github.com/_private/browser/stats

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 216
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Trojan/Gas.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1798091998.1724144791
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Tue, 20 Aug 2024 09:35:55 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1724150155
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C82B:873C6:117E0E1:12A73F9:66C4637B
DNS

www.youtube.com

Request

www.youtube.com

IN A

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN A

142.250.179.78

youtube-ui.l.google.com

IN A

142.250.75.238

youtube-ui.l.google.com

IN A

142.250.178.142

youtube-ui.l.google.com

IN A

172.217.20.174

youtube-ui.l.google.com

IN A

216.58.214.174

youtube-ui.l.google.com

IN A

142.250.179.110

youtube-ui.l.google.com

IN A

142.250.201.174

youtube-ui.l.google.com

IN A

172.217.20.206

youtube-ui.l.google.com

IN A

142.250.74.238
DNS

78.179.250.142.in-addr.arpa

Request

78.179.250.142.in-addr.arpa

IN PTR

Response

78.179.250.142.in-addr.arpa

IN PTR

par21s19-in-f141e100net
DNS

78.179.250.142.in-addr.arpa

Request

78.179.250.142.in-addr.arpa

IN PTR

52.173.151.229:443

https://clickthis.photo/7BFBNH

tls, http

msedge.exe

2.4kB
5.9kB
13
13

HTTP Request

GET https://clickthis.photo/7BFBNH

HTTP Response

302
104.21.15.56:443

https://grabify.world/7BFBNH

tls, http2

msedge.exe

2.1kB
4.6kB
20
21

HTTP Request

GET https://grabify.world/7BFBNH

HTTP Response

302
172.67.68.246:443

https://grabify.link/cdn-cgi/rum?

tls, http2

msedge.exe

12.8kB
77.1kB
87
100

HTTP Request

GET https://grabify.link/7BFBNH

HTTP Response

200

HTTP Request

GET https://grabify.link/js/ads.js

HTTP Request

GET https://grabify.link/js/jquery-2.5.1.min.js?id=becdb2801a6652a4af84f6a2d3f8a4f2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://grabify.link/js/jquery-2.5.2.min.js

HTTP Response

200

HTTP Request

POST https://grabify.link/api/js

HTTP Request

POST https://grabify.link/cdn-cgi/rum?

HTTP Request

GET https://grabify.link/favicon.ico

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://grabify.link/cdn-cgi/rum?

HTTP Response

204
104.16.79.73:443

https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

tls, http2

msedge.exe

2.2kB
11.5kB
25
30

HTTP Request

GET https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

HTTP Response

200
142.250.179.98:443

https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1065028372/?random=1724144739051&cv=11&fst=1724144739051&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dpage_view%3Bguid%3D6f08dc9c1910acf39cc05acaffff2dfa%3Becomm_totalvalue%3D1%3Becomm_pagetype%3Dhomepage&rfmt=3&fmt=4

tls, http2

msedge.exe

3.2kB
11.0kB
26
28

HTTP Request

GET https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1065028372/?random=1724144739036&cv=11&fst=1724144739036&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dgtag.config&rfmt=3&fmt=4

HTTP Request

GET https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1065028372/?random=1724144739051&cv=11&fst=1724144739051&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dpage_view%3Bguid%3D6f08dc9c1910acf39cc05acaffff2dfa%3Becomm_totalvalue%3D1%3Becomm_pagetype%3Dhomepage&rfmt=3&fmt=4
2.21.67.41:80

http://ebay.com.au/

http

msedge.exe

995 B
755 B
12
10

HTTP Request

GET http://ebay.com.au/

HTTP Response

301
2.21.67.41:80

ebay.com.au

http

msedge.exe

334 B
734 B
7
5

HTTP Response

408
2.21.67.41:443

https://ebay.com.au/

tls, http2

msedge.exe

1.9kB
6.4kB
17
22

HTTP Request

GET https://ebay.com.au/

HTTP Response

301
184.26.133.191:443

https://www.ebay.com.au/gh/gadget_csm?v=2

tls, http2

msedge.exe

12.6kB
352.0kB
166
289

HTTP Request

GET https://www.ebay.com.au/

HTTP Response

200

HTTP Request

GET https://www.ebay.com.au/sch/ajax/autocomplete

HTTP Response

200

HTTP Request

GET https://www.ebay.com.au/gh/useracquisition?correlation=si%3D6f08dc9c1910acf39cc05acaffff2dfa%2Cc%3D1%2CoperationId%3D4375194%2Ctrk-gflgs%3DQA**&show_optin_banner=true&v=2

HTTP Request

GET https://pages.ebay.com/favicon.ico

HTTP Response

200

HTTP Request

GET https://www.ebay.com.au/ifh/inflowcomponent?callback=Inflow.cb&fromGH=true&input=%7B%22pageId%22%3A4432023%2C%22gbhEnabled%22%3Afalse%7D

HTTP Response

200

HTTP Request

GET https://www.ebay.com.au/ifh/ifh-vendor7f7973c106349b07f2c1.js

HTTP Request

GET https://www.ebay.com.au/ifh/ifhab13b28202fc4cf10704.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/madrona_loadscripts.js

HTTP Response

200

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/utag.js

HTTP Response

200

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/utag.3.js?utv=ut4.51.202408090023

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/utag.7.js?utv=ut4.51.202408132109

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/utag.8.js?utv=ut4.51.202408080551

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/utag.9.js?utv=ut4.51.202407311745

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/utag.10.js?utv=ut4.51.202408132109

HTTP Request

GET https://mkttag.ebay.com/tag-manager/v1/tag/utag.11.js?utv=ut4.51.202408132109

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.ebay.com.au/gh/gadget_csm?v=2

HTTP Response

200
66.211.166.8:443

https://srv.au.ebayrtm.com/rtm?RtmCmd&a=json&uf=0&g=6f08dc9c1910acf39cc05acaffff2dfa&cg=0&c=1H4sIAAAAAAAAAzVQPW%2FCMBTc%2FSue1AWk4rznZyd8yAOqKirRdCEVSxdDXLAIiQWJUvrrqxQx3Z3ubrh7KjoPy%2B4ACkGh0oBqjmbOGazyYoIZIozypqtbF2rYtK4u3aWEIpz9WESephZFVIbtTURmtHnzG6rKJUYijLahLpv%2BCh8FEEpcwDbUqV7AT6rHsIyx8lu%2FW4c2MZxJTmG0fivy92eowsnDyu9PzRhejpfm7JOZkii1ISOJCTbu213Co%2FZaHu7%2BDJVMMxFJWTIiaibLA6g7sPX1ZPk5UD0E9qG0PP3qEJFEVKzthESkKVutWaHiQZAlhTiMU%2FbYtvE6T5K%2B76XfuZvcN2fpumQ4IvsvM5OlmZZEKIllhuIPli20CmABAAA%3D&p=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&di=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&v=4&enc=UTF-8&cb=window.VL_FLYOUT_NAV_RTM_CALLBACK

tls, http

msedge.exe

4.0kB
25.8kB
25
33

HTTP Request

GET https://srv.au.ebayrtm.com/rtm?RtmCmd&a=json&uf=0&g=6f08dc9c1910acf39cc05acaffff2dfa&cg=0&c=1H4sIAAAAAAAAAzVQPW%2FCMBTc%2FSue1AWk4rznZyd8yAOqKirRdCEVSxdDXLAIiQWJUvrrqxQx3Z3ubrh7KjoPy%2B4ACkGh0oBqjmbOGazyYoIZIozypqtbF2rYtK4u3aWEIpz9WESephZFVIbtTURmtHnzG6rKJUYijLahLpv%2BCh8FEEpcwDbUqV7AT6rHsIyx8lu%2FW4c2MZxJTmG0fivy92eowsnDyu9PzRhejpfm7JOZkii1ISOJCTbu213Co%2FZaHu7%2BDJVMMxFJWTIiaibLA6g7sPX1ZPk5UD0E9qG0PP3qEJFEVKzthESkKVutWaHiQZAlhTiMU%2FbYtvE6T5K%2B76XfuZvcN2fpumQ4IvsvM5OlmZZEKIllhuIPli20CmABAAA%3D&p=1650&di=1650&v=4&enc=UTF-8&cb=window.VL_AD_TRACKING_CALLBACK

HTTP Response

200

HTTP Request

GET https://srv.au.ebayrtm.com/rtm?RtmCmd&a=json&uf=0&g=6f08dc9c1910acf39cc05acaffff2dfa&cg=0&c=1H4sIAAAAAAAAAzVQPW%2FCMBTc%2FSue1AWk4rznZyd8yAOqKirRdCEVSxdDXLAIiQWJUvrrqxQx3Z3ubrh7KjoPy%2B4ACkGh0oBqjmbOGazyYoIZIozypqtbF2rYtK4u3aWEIpz9WESephZFVIbtTURmtHnzG6rKJUYijLahLpv%2BCh8FEEpcwDbUqV7AT6rHsIyx8lu%2FW4c2MZxJTmG0fivy92eowsnDyu9PzRhejpfm7JOZkii1ISOJCTbu213Co%2FZaHu7%2BDJVMMxFJWTIiaibLA6g7sPX1ZPk5UD0E9qG0PP3qEJFEVKzthESkKVutWaHiQZAlhTiMU%2FbYtvE6T5K%2B76XfuZvcN2fpumQ4IvsvM5OlmZZEKIllhuIPli20CmABAAA%3D&p=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&di=19392:19393:19394:19395:19396:19397:19398:19399:19400:19401:20858&v=4&enc=UTF-8&cb=window.VL_FLYOUT_NAV_RTM_CALLBACK

HTTP Response

200
93.184.223.214:443

https://ir.ebaystatic.com/cr/v/c1/market-sans/v1.0/MarketSans-SemiBold-WebS.woff2

tls, http2

msedge.exe

10.3kB
319.2kB
172
248

HTTP Request

GET https://ir.ebaystatic.com/pictures/aw/pics/s_1x2.gif

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/rs/c/vertlandweb/r.598c1013.js

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c1/ebay-cookies/5.js

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c01/nh24070265b74ffae1964cce828.js

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c01/ubt24070236dd1e675d8f4e7497.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c1/market-sans/v1.0/MarketSans-Regular-WebS.woff2

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c1/market-sans/v1.0/MarketSans-SemiBold-WebS.woff2

HTTP Response

200

HTTP Response

200

HTTP Response

200
93.184.223.214:443

ir.ebaystatic.com

tls

msedge.exe

1.6kB
6.1kB
11
11
93.184.223.214:443

https://ir.ebaystatic.com/rs/c/sub-EF1KPzv6.js

tls, http2

msedge.exe

12.5kB
372.4kB
211
289

HTTP Request

GET https://ir.ebaystatic.com/rs/v/ebhvksgh5u1b3lhxfttzolhgci2.css?proc=DU:N

HTTP Request

GET https://ir.ebaystatic.com/rs/c/vertlandweb/r.1bc38966.css

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c1/eBayPlus/ebayPlus-Logo-58x15.svg

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/rs/v/aita3vwhpiyk3byvmscxxtinca0.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/pictures/aw/pics/cmp/ds3/sprds3_20.png

HTTP Request

GET https://ir.ebaystatic.com/rs/v/fxxj3ttftm5ltcqnto1o4baovyl.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c01/ac-080524215914.dweb.min.js

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c1/globalheader_widget_platform__v2-b70676194b.js

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c01/78cd5f76-beb8-486a-ae47-cbb49ea19309.min.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/cr/v/c1/1x1.gif

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/rs/c/9527tracking/configuration.js?ts=5747149

HTTP Response

200

HTTP Request

GET https://ir.ebaystatic.com/rs/c/sub-EF1KPzv6.js

HTTP Response

200
184.26.133.88:443

https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/ipgAAOSwLilk3P1M/$_57.JPG

tls, http2

msedge.exe

27.8kB
1.1MB
480
783

HTTP Request

GET https://i.ebayimg.com/images/g/PnkAAOSwo95mqxXA/s-l960.webp

HTTP Request

GET https://i.ebayimg.com/images/g/jLYAAOSw5olmonLS/s-l1600.webp

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://rover.ebay.com.au/roverimp/0/0/9?imp=2046301&trknvp=cp%3D4432023%26ghi%3D98&1724144737218

HTTP Response

200

HTTP Request

GET https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/7~sAAOSw535mrGL-/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/4AsAAOSwxlxmrGp0/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/SMwAAOSwtyZmrGUp/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/images/g/1zQAAOSw6~RmvCkO/s-l960.webp

HTTP Request

GET https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/tfgAAOSwySRlg9KA/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/Cp8AAOSwiYFmrGXY/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/images/g/UXoAAOSwT75mouP5/s-l1600.webp

HTTP Request

GET https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/F40AAOSwQsNmrGTs/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/WU4AAOSwOuVlg892/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/images/g/lKgAAOSwaPNmtH5L/s-l640.webp

HTTP Request

GET https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/8D0AAOSwVEBmrGWY/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/ojsAAOSwLCNlg9JS/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/RUgAAOSwbM1lg9Lm/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/ORgAAOSwE4Flg9LU/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/images/g/j-wAAOSwXORmtH5Y/s-l96.webp

HTTP Request

GET https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/wKAAAOSwfCNlg9Ke/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MzQwWDM0MA==/z/1zkAAOSwW-BmrGYp/$_1.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MTYwMFgxNjAw/z/LYgAAOSwG5Vlg9Nz/$_1.JPG

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/YUQAAOSwDOhk3P80/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MQ==/z/o60AAOSwN~Bk3Pp2/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/dZ4AAOSwsitk3Pr0/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/q54AAOSwEkVk3QGh/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/Ib8AAOSwTXxk3Puk/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/fkEAAOSwo8hk3PwN/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/jT0AAOSwIX5k3PxY/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/IaMAAOSwBVFk3Pya/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/CSEAAOSwHs5k3Pz9/$_57.JPG

HTTP Request

GET https://i.ebayimg.com/00/s/MjcwWDc3MA==/z/ipgAAOSwLilk3P1M/$_57.JPG

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
184.26.133.88:443

https://i.ebayimg.com/thumbs/images/g/amQAAOSw5SNmwrLi/s-l500.webp

tls, http2

msedge.exe

11.7kB
273.9kB
170
219

HTTP Request

GET https://secureir.ebaystatic.com/cr/v/c1/jquery/jquery-3.7.0.min.js

HTTP Response

200

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/KHsAAOSwRX9mudPv/s-l500.webp

HTTP Response

200

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/5t8AAOSwaaRmw-qQ/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/MggAAOSwL4VmutNZ/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/tmkAAOSwPhFmv~6u/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/EYYAAOSwVXNmvJBJ/s-l500.webp

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/gtUAAOSwBXxk5jXw/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/DxoAAOSwtEtmOU1l/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/TFgAAOSwALVfUaI3/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/BLAAAOSwPy9lNz~3/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/0IEAAOSwDaRmdb13/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/KVkAAOSww1xlNz-S/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/B9kAAOSw9xJdsoZZ/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/zi4AAOSw7ABmaSiL/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/vfoAAOSw1K9mwrSV/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/5e4AAOSw~NNmxDgI/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/mHMAAOSweBRmwq9m/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/BboAAOSwwTpmwq~h/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/G6gAAOSwpiNmwrUg/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/b5cAAOSwtJBmwrOv/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/R4cAAOSw-w5mwrN-/s-l500.webp

HTTP Request

GET https://i.ebayimg.com/thumbs/images/g/amQAAOSw5SNmwrLi/s-l500.webp

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
66.211.166.8:443

srv.au.ebayrtm.com

tls

msedge.exe

1.1kB
9.4kB
11
13
66.211.162.160:443

https://www.ebayadservices.com/marketingtracking/v1/sync?guid=6f08dc9c1910acf39cc05acaffff2dfa&uid=

tls, http

msedge.exe

2.1kB
10.8kB
18
21

HTTP Request

GET https://www.ebayadservices.com/marketingtracking/v1/sync?guid=6f08dc9c1910acf39cc05acaffff2dfa&uid=

HTTP Response

200
209.140.129.87:443

https://devicebind.ebay.com.au/signin/sub/log

tls, http

msedge.exe

4.7kB
11.9kB
21
20

HTTP Request

POST https://devicebind.ebay.com.au/signin/sub/log

HTTP Response

200
209.140.129.87:443

https://devicebind.ebay.com.au/signin/sub/log

tls, http

msedge.exe

7.3kB
21.3kB
27
31

HTTP Request

GET https://devicebind.ebay.com.au/signin/sub/tt.html?st=1724144738962&f=53000&e=0&pageid=4375194&rec=0&sc=0&sm=4&sig=wy1lwhGNuIJXWiz42H1hwOfh07TXWgpFroNdvPEUQnsctoHvrLkFRzPJvrCn%2BDWbGPvKNzHBNoHWow0zzjfDDw%3D%3D

HTTP Response

200

HTTP Request

POST https://devicebind.ebay.com.au/signin/sub/log

HTTP Response

200
104.117.183.107:443

https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724144779982

tls, http2

msedge.exe

23.0kB
8.9kB
35
37

HTTP Request

GET https://backstory.ebay.com.au/customer/v1/bs_img_service?pld=%5B%7B%22guid%22%3A%226f08dc9c1910acf39cc05acaffff2dfa%22%2C%22siteId%22%3A15%2C%22eventFamily%22%3A%22AUTO_TRACKING%22%2C%22agentVersion%22%3A%222.6.2%22%2C%22trackable%22%3A%7B%22trackableId%22%3A%22ba7dee71-be54-4687-8530-352ed3b6eb6d%22%2C%22parentTrackableId%22%3Anull%2C%22instanceId%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22screenId%22%3A%22238c6c05-c067-4607-8066-5e4f210d69b3%22%2C%22description%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22entityId%22%3A%224375194%22%2C%22entityType%22%3A%22Page%22%7D%2C%22activity%22%3A%7B%22timestamp%22%3A1724144738345%2C%22category%22%3A%22Impression%22%2C%22type%22%3A%22VIEW.PAGE_LOAD%22%2C%22referer%22%3A%22%22%2C%22details%22%3A%7B%22openTime%22%3A%221724144735912%22%2C%22history%22%3A%221%22%2C%22isTabSwitch%22%3Afalse%2C%22pvKey%22%3A%22e89e954b-7e1e-4a24-86e7-98c47fc19ed1%22%2C%22prevPageId%22%3Anull%2C%22ePageId%22%3A%224375194%22%2C%22nPageId%22%3A%224432023%22%2C%22ciid%22%3A%22ACNzgfhE*%22%7D%2C%22viewportWidth%22%3A1280%2C%22viewportHeight%22%3A609%7D%2C%22context%22%3A%7B%22utcOffset%22%3A0%2C%22userLang%22%3A%22en-US%22%2C%22userAgent%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F92.0.4515.131%20Safari%2F537.36%20Edg%2F92.0.902.67%22%2C%22screenWidth%22%3A1280%2C%22screenHeight%22%3A720%2C%22others%22%3A%7B%7D%7D%7D%5D&ct=1724144738346

HTTP Response

200

HTTP Request

POST https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724144779982

HTTP Response

200
143.204.176.49:443

https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

tls, http2

msedge.exe

3.2kB
8.4kB
21
25

HTTP Request

OPTIONS https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

HTTP Response

200

HTTP Request

GET https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

HTTP Response

200
178.250.1.13:443

https://dynamic.criteo.com/js/ld/ld.js?a=89985

tls, http2

msedge.exe

2.3kB
27.1kB
28
27

HTTP Request

GET https://dynamic.criteo.com/js/ld/ld.js?a=89985

HTTP Response

200
3.255.41.64:443

https://sp.analytics.yahoo.com/spp.pl?a=10000&ea=Homepage&.yp=10106233&js=no&fmseg=undefined&guid=6f08dc9c1910acf39cc05acaffff2dfa&product_id=undefined&tcat=undefined&bn=undefined&opid=4432023&price=undefined&purchase_order=undefined

tls, http2

msedge.exe

2.0kB
9.1kB
16
19

HTTP Request

GET https://sp.analytics.yahoo.com/spp.pl?a=10000&ea=Homepage&.yp=10106233&js=no&fmseg=undefined&guid=6f08dc9c1910acf39cc05acaffff2dfa&product_id=undefined&tcat=undefined&bn=undefined&opid=4432023&price=undefined&purchase_order=undefined
184.26.132.239:443

https://ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22event_id%22%3A%22dfa6f1b6ee9cb4eb4cc70827931ccf60%22%7D&tid=2612546426607&cb=1724144739147&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%2C%22pin_unauth%22%3A%22dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A720%2C%22sw%22%3A1280%2C%22mh%22%3A%221b182128%22%2C%22is_eu%22%3Atrue%2C%22architecture%22%3A%22x86%22%2C%22model%22%3A%22%22%2C%22platform%22%3A%22Windows%22%2C%22platformVersion%22%3A%2210.0%22%2C%22uaFullVersion%22%3A%2292.0.902.67%22%2C%22ecm_enabled%22%3Afalse%7D

tls, http2

msedge.exe

4.8kB
41.5kB
41
58

HTTP Request

GET https://s.pinimg.com/ct/core.js

HTTP Response

200

HTTP Request

GET https://s.pinimg.com/ct/lib/main.1b182128.js

HTTP Response

200

HTTP Request

GET https://ct.pinterest.com/v3/?tid=2612546426607&ov=%7B%22page_name%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22page_category%22%3A%22%22%7D&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A720%2C%22sw%22%3A1280%2C%22mh%22%3A%221b182128%22%2C%22is_eu%22%3Atrue%2C%22architecture%22%3A%22x86%22%2C%22model%22%3A%22%22%2C%22platform%22%3A%22Windows%22%2C%22platformVersion%22%3A%2210.0%22%2C%22uaFullVersion%22%3A%2292.0.902.67%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1724144738999

HTTP Request

GET https://ct.pinterest.com/user/?tid=2612546426607&ov=%7B%22page_name%22%3A%22Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay%22%2C%22page_category%22%3A%22%22%7D&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%7D&cb=1724144738995&dep=2%2CPAGE_LOAD

HTTP Request

GET https://ct.pinterest.com/user/?event=pagevisit&ed=%7B%22event_id%22%3A%22dfa6f1b6ee9cb4eb4cc70827931ccf60%22%7D&tid=2612546426607&cb=1724144738997&dep=5%2CEVENT_TAGS_ABSENT

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://ct.pinterest.com/static/ct/token_create.js

HTTP Request

GET https://ct.pinterest.com/ct.html

HTTP Request

GET https://ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22event_id%22%3A%22dfa6f1b6ee9cb4eb4cc70827931ccf60%22%7D&tid=2612546426607&cb=1724144739147&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22opt_out_type%22%3A%22%22%2C%22st%22%3A%22%22%2C%22country%22%3A%22%22%2C%22np%22%3A%22tealium%22%2C%22pin_unauth%22%3A%22dWlkPVlUQTBZbVZqTkRjdE9HWTVOQzAwWW1Ga0xXSm1aRGd0TkdRMlpqTTNZekpsWm1SaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.ebay.com.au%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A720%2C%22sw%22%3A1280%2C%22mh%22%3A%221b182128%22%2C%22is_eu%22%3Atrue%2C%22architecture%22%3A%22x86%22%2C%22model%22%3A%22%22%2C%22platform%22%3A%22Windows%22%2C%22platformVersion%22%3A%2210.0%22%2C%22uaFullVersion%22%3A%2292.0.902.67%22%2C%22ecm_enabled%22%3Afalse%7D

HTTP Response

200

HTTP Response

200

HTTP Response

200
157.240.17.15:443

connect.facebook.net

tls

msedge.exe

4.0kB
87.8kB
51
77
178.250.1.11:443

https://gum.criteo.com/syncframe?topUrl=www.ebay.com.au&origin=onetag

tls, http2

msedge.exe

2.0kB
10.0kB
18
16

HTTP Request

GET https://gum.criteo.com/syncframe?topUrl=www.ebay.com.au&origin=onetag

HTTP Response

200
172.217.20.196:443

https://www.google.com/pagead/landing?gcs=G111&gcd=13t3t3t3t5l1&tag_exp=0&rnd=1350036229.1724144739&url=https%3A%2F%2Fwww.ebay.com.au%2F&dma=0&npa=0&gtm=45be48e0v874537556za200&auid=1723759538.1724144739&did=dYmQxMT&gdid=dYmQxMT&frm=0

tls, http2

msedge.exe

3.5kB
7.6kB
24
29

HTTP Request

GET https://www.google.com/pagead/1p-user-list/1065028372/?random=1724144739036&cv=11&fst=1724144400000&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfSNzfQm_chgng3V5sSWV8ShJ9TaGtqA&random=1246734257&rmt_tld=0&ipr=y

HTTP Request

GET https://www.google.com/pagead/1p-user-list/1065028372/?random=1724144739051&cv=11&fst=1724144400000&bg=ffffff&guid=ON&async=1&gtm=45be48e0v874537556za200&gcd=13t3t3t3t5l1&dma=0&tag_exp=0&u_w=1280&u_h=720&url=https%3A%2F%2Fwww.ebay.com.au%2F&hn=www.googleadservices.com&frm=0&tiba=Electronics%2C%20Cars%2C%20Fashion%2C%20Collectibles%20%26%20More%20%7C%20eBay&did=dYmQxMT&gdid=dYmQxMT&npa=0&pscdl=noapi&auid=1723759538.1724144739&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&fdr=QA&data=event%3Dpage_view%3Bguid%3D6f08dc9c1910acf39cc05acaffff2dfa%3Becomm_totalvalue%3D1%3Becomm_pagetype%3Dhomepage&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfx7fWYhh9IRM_PkkFCAy4GSZZ4H_-AA&random=2049891883&rmt_tld=0&ipr=y

HTTP Request

POST https://www.google.com/pagead/landing?gcs=G111&gcd=13t3t3t3t5l1&tag_exp=0&rnd=1350036229.1724144739&url=https%3A%2F%2Fwww.ebay.com.au%2F&dma=0&npa=0&gtm=45be48e0v874537556za200&auid=1723759538.1724144739&did=dYmQxMT&gdid=dYmQxMT&frm=0
172.217.20.196:443

www.google.com

tls

msedge.exe

931 B
4.6kB
9
7
172.217.20.196:443

www.google.com

tls

msedge.exe

931 B
4.6kB
9
7
142.250.179.102:443

https://13341218.fls.doubleclick.net/activityi;src=13341218;type=au_ho0;cat=au_ho0;ord=6823836583058;npa=0;auiddc=1723759538.1724144739;u9=homepage;u5=6f08dc9c1910acf39cc05acaffff2dfa;gdid=dYmQxMT;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe48e0v9173467195za200zb874537556;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=0;epver=2;~oref=https%3A%2F%2Fwww.ebay.com.au%2F?

tls, http2

msedge.exe

2.3kB
7.4kB
19
21

HTTP Request

GET https://13341218.fls.doubleclick.net/activityi;src=13341218;type=au_ho0;cat=au_ho0;ord=6823836583058;npa=0;auiddc=1723759538.1724144739;u9=homepage;u5=6f08dc9c1910acf39cc05acaffff2dfa;gdid=dYmQxMT;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe48e0v9173467195za200zb874537556;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=0;epver=2;~oref=https%3A%2F%2Fwww.ebay.com.au%2F?
178.250.7.13:443

https://dnacdn.net/dna

tls, http2

msedge.exe

1.9kB
5.8kB
14
13

HTTP Request

GET https://dnacdn.net/dna

HTTP Response

200

HTTP Request

GET https://dnacdn.net/dna

HTTP Response

200
185.235.86.9:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.223:443

gem.gbc.criteo.com

msedge.exe

260 B
5
157.240.196.35:443

www.facebook.com

tls

msedge.exe

1.9kB
3.7kB
13
15
185.235.86.9:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.223:443

gem.gbc.criteo.com

msedge.exe

260 B
5
178.250.7.11:443

https://sslwidget.criteo.com/event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de

tls, http2

msedge.exe

1.8kB
5.1kB
13
14

HTTP Request

GET https://sslwidget.criteo.com/event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de

HTTP Response

302
74.119.117.16:443

https://widget.us.criteo.com/event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de

tls, http2

msedge.exe

1.8kB
5.9kB
13
13

HTTP Request

GET https://widget.us.criteo.com/event?a=89985&v=5.26.1&otl=1&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh&p2=e%3Dvpg&p3=e%3Ddis&adce=1&sc=%7B%22fbp%22%3A%22fb.2.1724144739275.197283122760891003%22%7D&tld=ebay.com.au&dy=1&fu=https%253A%252F%252Fwww.ebay.com.au%252F&ceid=ad1e3fbf-22a9-4018-8588-fe474706a9de

HTTP Response

200
185.235.86.24:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.222:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.24:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.222:443

gem.gbc.criteo.com

msedge.exe

260 B
5
178.250.1.25:443

https://csm.nl3.eu.criteo.net/iev?entry=c~Gum.EdgeSyncframe.StorageWriting.Dna.Success~1

tls, http2

msedge.exe

1.7kB
4.8kB
12
13

HTTP Request

POST https://csm.nl3.eu.criteo.net/iev?entry=c~Gum.EdgeSyncframe.StorageWriting.Dna.Success~1

HTTP Response

200
95.101.129.194:443

https://www.bing.com/fd/ls/lsp.aspx

tls, http2

msedge.exe

239.2kB
1.1MB
1036
1306

HTTP Request

GET https://www.bing.com/qbox?query=gi&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5153fb2e781e4cbb91dc73b8de690350&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gih&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=de1b1b09501d40c89d53b98bf578b9ca&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihu&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5b4878e0388f4fe4b46a534de48cd3fe&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=cad0f505f54647b8af645ea31318e2cc&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub+&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=697ce3d4f07949a882ba7623ec710e11&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub+v&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=76fe4d9c6cbc4a6fb23fb3bda9a9ebe4&oit=4&cp=7&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=gihub+vi&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=fb41f1de0d184991a87ecbc17f3b290f&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub+vir&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=6065c0ceb98c41c0a1a676d79d8d1ef5&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub+viru&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=d25ae8ac636f4068b01c2134c6d6bc80&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub+virus&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5c0e069bf07140098ce1dccd6e05aad1&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub+viruse&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=5553e720f2d740558dbf82e14aa6dd30&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=gihub+viruses&language=en-US&pt=EdgBox&cvid=ec840c4535194520b2b6e5ac6416682d&ig=711158fd726e41338898d83bdbaf46bc&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:9,%22BC%22:346,%22SE%22:-1,%22TC%22:-1,%22H%22:454,%22BP%22:457,%22CT%22:460,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,3515,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

HTTP Request

GET https://www.bing.com/rp/oocd_GLJp7OiNEvIPidegylCzYE.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=53.18853759765625&lon=-4.058230400085449&dispName=Bangor%252C%2520Gwynedd&isEff=1&effLocType=4&clientsid=044E27407A3C6EFA0F8B33A17B066F22

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785304%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785321%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785324%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144785326%2C%22Name%22%3A518%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785327%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785328%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1724144785329%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1724144785330%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.mszDF3ismkjfiZfvovS2YgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=80&h=80&c=1&vt=10&bgcl=a0add8&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.02f9fbe5-6b3f-462a-80e0-052cde3947e0&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1724144785414%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.92c3767f-c873-437a-94bc-3560bfdc09ef&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.qxOuNl2KtH_sqiHDbFitbQHaE4&w=80&h=80&c=1&vt=10&bgcl=b768ed&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.fd6f8468-2279-4ea8-9c2f-613d5d560750&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.a266136a-53c0-4a5e-b93c-96461bf21e92&w=20&h=20&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.61d87d84-0383-4c12-ba5b-5285b5a89328&w=20&h=20&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.f3abb66b-0392-450a-aca6-43d8a45d6d11&w=20&h=20&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.ITqpdby70xxoeJoFwBxB-AAAAA&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.c70da14552a59f805949377be5278d39&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.ed1edc79340e8d0c20bc52d0437c29d6&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.8eea1256ca716beb5c0e6c8d143c5695&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.TaUHj4RydL4bl0Y_lEmaBZVHPkhEXb7x1l2X4CedGiM&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=7CF3900D65E54E96AA1C7D6622EE3AB0&iid=.5100&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1088%2C%22time%22%3A1089%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144785685%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1092%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144785688%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1093%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144785689%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5057&IG=7CF3900D65E54E96AA1C7D6622EE3AB0

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&IID=SERP.5066&q=gihub+viruses&cvid=ec840c4535194520b2b6e5ac6416682d&aqs=edge..69i57j0l6.3312j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/supercaptionsassets?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&IID=SERP.5746

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum6%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f6%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1724144785715%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2266c45c9119c64ab4a8ae39e5828890a1%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144785738%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45c9119c64ab4a8ae39e5828890a1%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144785738%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785804%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22isME%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144785921%2C%22Name%22%3A%22SCSTPLD%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144786007%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144786014%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786091%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786091%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144786097%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786106%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144786107%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVP.eTt4dGm8jQGrDcI2_f5tIwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.1P5fh1p15tkKFQFwIJ6jpAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.xWn0SStJRRyvEK6fsodwSAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OSK.HEROPYXhmt9xIZFjih8rN47BRa4kK4GkSdxARfoD_7zE5s4&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.93d18faff6c23e706e75de65f515c9ed&w=153&h=116&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.0f051ba4581b8d1ad98ce37ea038d3c4&w=115&h=77&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786115%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&Type=Event.PPT&DATA={%22S%22:559,%22E%22:1354,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/auth/getToken

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786118%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144786178%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22732%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144786184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221582%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144786184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144786245%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/header/mobupsellbub?customtype=31

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&ID=SERP,5660.1&url=%2Fsearch%3Fq%3Dgithub%2Bvirus%26FORM%3DAWRE

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1724144787755}&log=UserEvent

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7CF3900D65E54E96AA1C7D6622EE3AB0&CID=1D1BD82DA74764232D91CCCCA67D65BE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144786434%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786458%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786458%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144786464%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144786540%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144786912%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22ClickPage%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144787755%2C%22Name%22%3A%22HideBubble%22%2C%22FID%22%3A%22145n7748_14cbvzz1%22%7D%5D

HTTP Request

GET https://www.bing.com/search?q=github+virus&FORM=AWRE

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:405,%22SE%22:-1,%22TC%22:-1,%22H%22:500,%22BP%22:514,%22CT%22:528,%22IL%22:9},%22ad%22:[-1,-1,1263,609,1263,3670,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144788481%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144788481%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144788489%2C%22Name%22%3A598%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788489%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788491%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788491%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://th.bing.com/th?id=OIP.uO6EfM2_6mrHhUZn2qsU2wHaDt&w=80&h=80&c=1&vt=10&bgcl=8dfa43&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.mj1WzB6ILzIp0ugXPjVjoQHaFW&w=80&h=80&c=1&vt=10&bgcl=99eade&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.fd6f8468-2279-4ea8-9c2f-613d5d560750&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.89bceaba-f06e-4132-82f1-cdfb5e71e02a&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.05ef88bd-5ada-40d4-892e-a7718a9bf1ce&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.81fc40e7-07a9-443d-ae42-76ffcee46bbf&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2212%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788492%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788492%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788496%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788499%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1724144788500%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788501%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1724144788501%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A941%2C%22time%22%3A942%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144788698%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=273BDD523DE041CDAF22CA261CD8CD5B&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A944%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144788699%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A945%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144788700%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=273BDD523DE041CDAF22CA261CD8CD5B

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=273BDD523DE041CDAF22CA261CD8CD5B&IID=SERP.5065&q=github+virus&FORM=AWRE

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

HTTP Request

GET https://www.bing.com/supercaptionsassets?IG=273BDD523DE041CDAF22CA261CD8CD5B&IID=SERP.5770

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum3%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f3%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45c95264447af88fcbdc9018eafc7%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144788709%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45c95264447af88fcbdc9018eafc7%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144788709%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788767%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22isME%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144788878%2C%22Name%22%3A%22SCSTPLD%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144788957%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144788963%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144788994%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144789016%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVP.yH1UiDLLeCb2VUvWEafMAwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789020%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789020%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789021%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/auth/getToken

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.PPT&DATA={%22S%22:550,%22E%22:1077,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144789022%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22744%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144789023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221267%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144789023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144789119%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5503.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De809c7ba1a82de7aJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUwMw%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dgithub%2Bvirus%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=e809c7ba1a82de7aJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUwMw&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/favicon.ico

HTTP Response

200

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

HTTP Request

GET https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144789203%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144789204%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144789213%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144789608%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724144791603%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724144791985%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144801683%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144802727%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=ce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

HTTP Request

GET https://www.bing.com/fd/ls/GLinkPing.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5219.2

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144803841%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144803841%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144804338%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144804375%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144825355%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144826659%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22show%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724144827868%2C%22Name%22%3A%22Render%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

HTTP Response

204

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/supercaptions?IID=SERP.5779&IG=273BDD523DE041CDAF22CA261CD8CD5B

HTTP Request

GET https://www.bing.com/rp/OJWYLxkTdSOmE7-V53KpAdOj-xY.gif

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OIP.uO6EfM2_6mrHhUZn2qsU2wHaDt&w=240&h=120&c=7&o=6&pid=SupCap

HTTP Request

GET https://www.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=188&h=160&c=7&o=6&pid=3.1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144835712%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.Hide%22%2C%22TS%22%3A1724144836133%2C%22Name%22%3A%22ScopeDropdownMenuHide%22%2C%22FID%22%3A%22ScopeDropdownMenu%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144836239%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144836271%2C%22Name%22%3A%22SuperCaptionHighQImg%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22Type%22%3A%220%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144836272%2C%22Name%22%3A%22SuperCaptionContainerOpened%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22id%22%3A%22SERP.5779%22%2C%22Type%22%3A%220%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724144836272%2C%22Name%22%3A%22ShowFlyout%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22h%22,%22TS%22:1724144836630,%22FID%22:%22SuperCaption%22}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144837110%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22d2%22,%22TS%22:1724144838639,%22FID%22:%22SuperCaption%22}&log=UserEvent

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/ls.gif?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225778.1%22,%22Name%22:%22EntityPreview%22,%22HType%22:%22d5%22,%22TS%22:1724144841633,%22FID%22:%22SuperCaption%22}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1724144844984%2C%22Name%22%3A%22SuperCaptionIconClosed%22%2C%22FID%22%3A%22SuperCaption%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724144865509%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144867195%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144873765%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144874116%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=273BDD523DE041CDAF22CA261CD8CD5B&ID=SERP,5219.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dgithub%2Bvirus%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=ce224f0f91045584JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIxOQ&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=github+virus&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=656e26c5cb3a49c3b7abd9b5a0bc9811&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yo&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=381a25a489eb4cefba23901699fa869e&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yoo&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=f3d3a0c02a5f4da890da21ba56c8ca80&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yoou&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=6dae630719f246509924bf2bdd186a2b&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yoout&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=dace69eef9b84185b948c15fab46cb94&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yooutu&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=f56a64ca699a47ffb4083e22098cfbcf&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yooutub&language=en-US&pt=EdgBox&cvid=5e63547c068242bc8fdefbe1974fe88c&ig=ad7d603cd1b446bf979845d0f96d70d5&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:25,%22BC%22:373,%22SE%22:-1,%22TC%22:-1,%22H%22:507,%22BP%22:536,%22CT%22:550,%22IL%22:12},%22ad%22:[-1,-1,1263,609,1263,3045,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144954756%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724144954756%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A529%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954762%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.1b7ba985-e453-440d-926d-eb4586cfeb73&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODL.efcc5a18e25d43f74c9b687beeab394d&w=80&h=80&c=1&vt=9&bgcl=4dde4a&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.b025e722-4d2d-48a8-8181-422e22a04d81&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.57da01a6-0228-4314-babe-f3b8376864e5&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.57da01a6-0228-4314-babe-f3b8376864e5&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OSK.91c5fd1f62edc8cd02b0627d11286a0e&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=33BB2CA90E6D4D5E9A374702C8A60C25&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954769%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954770%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144954774%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A932%2C%22time%22%3A935%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724144954970%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A936%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144954971%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A936%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724144954972%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=33BB2CA90E6D4D5E9A374702C8A60C25

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=33BB2CA90E6D4D5E9A374702C8A60C25&IID=SERP.5065&q=yooutub&cvid=5e63547c068242bc8fdefbe1974fe88c&aqs=edge..69i57j0l6.1406j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.4a3cdd1a0f160f1ecd5c7e8da5510752&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.3ccc18cfcc9b6e62708b6f3b06e7563a&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.b85990d8c7f1aa321250c99aef0530ea&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.a9fa17ec2f3b4b066ec1984fb5ebc3b4&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum11%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f11%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum3%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f3%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45d3ba5234bb2909297422d6efa6d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144954991%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45d3ba5234bb2909297422d6efa6d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724144954991%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955029%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955171%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955172%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724144955174%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724144955184%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVFT.yGQijLr1q95e-d4z5GjExy&pid=News&w=300&h=186&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=ODF.Itq1YaygZYquIY-bZPUV3w&pid=news&w=16&h=16&c=14&rs=2

HTTP Request

GET https://th.bing.com/th?id=OVFT.sqKy2xeqxg_2NZKut1KDwy&pid=News&w=300&h=186&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OSK.HEROjdo_Xsb7qBvK0B0wkLPyULqzmPNaRfFo5cdaweXp-nM&w=384&h=228&c=1&rs=2&o=6&oif=webp&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OIP.-X6T6oFwIR4hjFZQeMK-dAHaEX&w=145&h=85&o=6&oif=webp&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.HNYBd0SxnRohPbXIx9ptlF_4NdNWY8j0CblVBceq8PmITvE&w=88&h=53&o=6&oif=webp&pid=SANGAM

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955194%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&Type=Event.PPT&DATA={%22S%22:583,%22E%22:1007,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/auth/getToken

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.HNYBWwTMpNEKPy1XXeAuyp7MOtCQRyMSNn2uvhYrTjYjrnE&w=36&h=36&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.HNYB_87p5g93-FGhgKwtbLVOzro0RcGRh5SAS9NAjXI669k&w=36&h=36&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.HNYBByhdtbfKjPIS2l05Cw5dqm0gsQ0GEFPGqXPeh7A_7Zs&w=36&h=36&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.HNYBDSLEHoFFet3QBdvtvMb1ND0a6X-ux9UdKrLkYYQx1YI&w=36&h=36&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724144955209%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22740.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724144955211%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221173.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724144955211%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724144955225%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724144955308%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144955379%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724144955380%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724144957257%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=33BB2CA90E6D4D5E9A374702C8A60C25&ID=SERP,5207.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D630824c8005c1256JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIwNw%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dyooutub%26u%3Da1aHR0cHM6Ly93d3cueW91dHViZS5jb20v%26ntb%3D1

HTTP Request

GET https://www.bing.com/ck/a?!&&p=630824c8005c1256JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTIwNw&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=yooutub&u=a1aHR0cHM6Ly93d3cueW91dHViZS5jb20v&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=33BB2CA90E6D4D5E9A374702C8A60C25&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724144958105%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145012905%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=273BDD523DE041CDAF22CA261CD8CD5B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204
185.235.87.198:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.14:443

ag.gbc.criteo.com

msedge.exe

260 B
5
95.101.129.194:443

www.bing.com

tls, http2

msedge.exe

1.1kB
5.1kB
12
13
185.235.87.198:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.14:443

ag.gbc.criteo.com

msedge.exe

260 B
5
95.101.129.234:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.0kB
9
11
95.101.129.210:443

https://r.bing.com/rp/10e5joITRJEVdubr7Lf4mdAhY-I.br.css

tls, http2

msedge.exe

7.8kB
72.2kB
75
87

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

HTTP Request

GET https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

HTTP Request

GET https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

HTTP Request

GET https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

HTTP Request

GET https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

HTTP Request

GET https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

HTTP Request

GET https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

HTTP Request

GET https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

HTTP Request

GET https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

HTTP Request

GET https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

HTTP Request

GET https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

HTTP Request

GET https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

HTTP Request

GET https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

HTTP Request

GET https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

HTTP Request

GET https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/g2mFaePdYzQOubI8JEItbebrED8.gz.css

HTTP Request

GET https://r.bing.com/rp/_ykiGO1K5rjAQeICdJheT3jfLeY.gz.css

HTTP Request

GET https://r.bing.com/rp/Yb-MiHwFpZo4XYbuuNLKCnyhd1M.gz.css

HTTP Request

GET https://r.bing.com/rp/tPLNa5UcMaQEzzg0acZfPM45N6I.gz.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/10e5joITRJEVdubr7Lf4mdAhY-I.br.css

HTTP Response

200
95.101.129.210:443

https://r.bing.com/rp/588mCJcNGAaFB6dOlDRliug5zsc.br.js

tls, http2

msedge.exe

27.1kB
582.7kB
373
469

HTTP Request

GET https://r.bing.com/rp/H5PTMCU6CKGhcAMyLGQNXiQfQu8.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js

HTTP Request

GET https://r.bing.com/rp/2TaaiuhS8BA-D4cbNcsAamIX63o.br.js

HTTP Request

GET https://r.bing.com/rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js

HTTP Request

GET https://r.bing.com/rp/ziP8pemc67tw0mIFPEfhzfnzK5M.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Request

GET https://r.bing.com/rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js

HTTP Request

GET https://r.bing.com/rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js

HTTP Request

GET https://r.bing.com/rp/iMoAoIUUC66uD9MHJjWv4_hB2I8.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/1rUTIFRcUHTZUBaDs_0q8KvUlR0.br.js

HTTP Request

GET https://r.bing.com/rp/rGQjmbazvzD-CcF-Vey7tXdAKf8.br.js

HTTP Request

GET https://r.bing.com/rp/LWdKiClTSV7CFiSJsNQTbFbINRk.br.js

HTTP Request

GET https://r.bing.com/rp/eFvpkjNdxwu0RkDoltL0Qri3DLg.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js

HTTP Request

GET https://r.bing.com/rp/Gw7eETSwe7GHmKwW1lRqGPQJXRo.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6r/xj/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/Cg0Fx_6iq4GfMQyER4CqKFOWfG4.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/s3ydRDPqMugP_EjrunOTC4bo_Ac.br.js

HTTP Request

GET https://r.bing.com/rp/IPjqENt_x1c56fZCsFxov2V2J84.br.js

HTTP Request

GET https://r.bing.com/rp/3US3nNU_RgsSNFm9Bzw6xgeuOHk.br.js

HTTP Request

GET https://r.bing.com/rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/JigriHckblqcu1XwKpT4wumVS2k.br.js

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Request

GET https://r.bing.com/rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js

HTTP Request

GET https://r.bing.com/rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js

HTTP Request

GET https://r.bing.com/rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js

HTTP Request

GET https://r.bing.com/rp/yOU5_vGeE7HIs09fec6ZV9prLO4.br.js

HTTP Request

GET https://r.bing.com/rp/mJ8ysAgJo97kNjxDuPA-UMTqWCs.br.js

HTTP Request

GET https://r.bing.com/rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js

HTTP Request

GET https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

HTTP Request

GET https://r.bing.com/rp/9YAQCrq1aCvJQNyORXytYpPYETs.br.js

HTTP Request

GET https://r.bing.com/rp/8Flh1qH2jCe9nv7Pa_33TiCpQ8Q.br.js

HTTP Request

GET https://r.bing.com/rp/Q1Z1cF6gZCkTBd0Gx8Q7LjbPAlQ.br.js

HTTP Request

GET https://r.bing.com/rp/k_1vDJ7YnYEjL9Qod9Nov34mjlg.br.js

HTTP Request

GET https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

HTTP Request

GET https://r.bing.com/rp/P7qz8YHLATpo17hAsEzFw25VM0w.br.js

HTTP Request

GET https://r.bing.com/rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Request

GET https://r.bing.com/rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js

HTTP Request

GET https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rs/6r/td/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/5cNYI-KHtSpU1cTpIG4CXkdsXFg.br.js

HTTP Request

GET https://r.bing.com/rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js

HTTP Request

GET https://r.bing.com/rp/kNUdPzzLEbQzYr3icm3MTxwk6-Y.br.js

HTTP Request

GET https://r.bing.com/rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js

HTTP Request

GET https://r.bing.com/rp/jBIkCV7jrEq13WeSObdKprQ65HI.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/e5E3S-lkItFHIqVf6KjzTWPZb6Y.br.js

HTTP Request

GET https://r.bing.com/rp/IdUTPeerhJUBvXEe7f4gFEe3qoI.br.js

HTTP Request

GET https://r.bing.com/rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js

HTTP Request

GET https://r.bing.com/rp/BeEJtR7xhnHImQ8GRaJw8GQi-wU.br.js

HTTP Request

GET https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

HTTP Request

GET https://r.bing.com/rp/UN9xcso94nLdqnqVgMqAEitGHyU.br.js

HTTP Request

GET https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

HTTP Request

GET https://r.bing.com/rp/XvPs3zdtm8Xfl-ujR40Xu7FW0LI.br.js

HTTP Request

GET https://r.bing.com/rp/Bq5XLXS2IAyPVC8Nn9yIeT6NYOE.br.js

HTTP Request

GET https://r.bing.com/rp/Mk2QDFL5CZREW5g-4w4mtqCEhHc.br.js

HTTP Request

GET https://r.bing.com/rp/5WEwQve87H0O12hmcE3ZlbmonJA.br.js

HTTP Request

GET https://r.bing.com/rp/y1tiMssL1_ZRGIkBjxDYmR2kX8o.br.js

HTTP Request

GET https://r.bing.com/rp/8w26ODmd1hk4C30WJtfkdBYFSfE.br.js

HTTP Request

GET https://r.bing.com/rp/AsdMf7D6KLdP5SQOeuSIZtV8-sA.br.js

HTTP Request

GET https://r.bing.com/rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js

HTTP Request

GET https://r.bing.com/rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js

HTTP Request

GET https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

HTTP Request

GET https://r.bing.com/rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js

HTTP Request

GET https://r.bing.com/rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js

HTTP Request

GET https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

HTTP Request

GET https://r.bing.com/rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js

HTTP Request

GET https://r.bing.com/rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

HTTP Request

GET https://r.bing.com/rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/mJUKbhysGPVV0f_zho_k3BkdtlU.gz.js

HTTP Request

GET https://r.bing.com/rp/43BJuM7qM_8Wd1WfIZM2_oK9zrw.gz.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/00hi45gaLPp-E7lytQTnu_LRYY0.gz.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/pCjAnNfKRza-LKbFI9VevrRjIwc.gz.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/fkuAJkF5UYw2K-9ao9Og6rAO3M0.br.js

HTTP Request

GET https://r.bing.com/rp/dRQaeVvZZlbz9ayC0wFdbLlVshk.br.js

HTTP Request

GET https://r.bing.com/rp/b9Hd7NTqpf3JjC1wwzfTcjY8NP8.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/U1NbN7mcTwDlpQXJqx6swENhLWc.br.js

HTTP Request

GET https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/rbptDYw-eOlSFDfSlUNCkR6XM0c.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/Ao8XOvaaQxlXxHEA_r06zFgCMTc.gz.js

HTTP Request

GET https://r.bing.com/rp/K59yR1AD9pXD4Qp7EsPhFjZsOjo.gz.js

HTTP Request

GET https://r.bing.com/rp/jZnZ33DA_uDhotnaIsXNbY1za-s.gz.js

HTTP Request

GET https://r.bing.com/rp/6v5u2U4fJjMh954CqHxOmGfCxRs.gz.js

HTTP Request

GET https://r.bing.com/rp/dvzAZc08QoRQcmA7yoRfhaItvOo.gz.js

HTTP Request

GET https://r.bing.com/rp/DCwEs2WprPyqtoSBavB_W8Qjxl8.gz.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/588mCJcNGAaFB6dOlDRliug5zsc.br.js

HTTP Response

200
95.101.129.234:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
12
20.190.177.84:443

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=f0252e6d-77bb-41ba-ba09-46ac6df44725&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227CF3900D65E54E96AA1C7D6622EE3AB0%22%7d

tls, http

msedge.exe

2.8kB
7.5kB
12
13

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=f0252e6d-77bb-41ba-ba09-46ac6df44725&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227CF3900D65E54E96AA1C7D6622EE3AB0%22%7d

HTTP Response

200
20.26.156.215:443

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/rogues

tls, http2

msedge.exe

10.2kB
232.4kB
132
209

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/security/overall-count

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/refs?type=branch

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/branch-count

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tag-count

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/manifest.json

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/archive/refs/heads/master.zip

HTTP Response

302

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo

HTTP Response

304

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

HTTP Response

304

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/branch-count

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tag-count

HTTP Response

304

HTTP Response

304

HTTP Response

304

HTTP Response

304

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/rogues

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/rogues

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/rogues

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/rogues

HTTP Response

200

HTTP Response

200

HTTP Response

200
20.26.156.215:443

github.com

tls

msedge.exe

1.5kB
4.0kB
9
9
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
185.199.110.154:443

https://github.githubassets.com/assets/react-code-view-bea370344f2f.js

tls, http2

msedge.exe

46.2kB
1.2MB
672
970

HTTP Request

GET https://github.githubassets.com/assets/light-efd2f2257c96.css

HTTP Request

GET https://github.githubassets.com/assets/dark-6b1e37da2254.css

HTTP Request

GET https://github.githubassets.com/assets/primer-primitives-8500c2c7ce5f.css

HTTP Request

GET https://github.githubassets.com/assets/primer-bbda46ca867f.css

HTTP Request

GET https://github.githubassets.com/assets/global-fe6db6dfddd1.css

HTTP Request

GET https://github.githubassets.com/assets/github-cf4e90581e80.css

HTTP Request

GET https://github.githubassets.com/assets/code-34406d39e629.css

HTTP Request

GET https://github.githubassets.com/assets/repository-992e95451f25.css

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu.572fff1cb5c3caef1ac9.module.css

HTTP Request

GET https://github.githubassets.com/assets/repos-overview.47cf64b9ae0677ccb350.module.css

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/wp-runtime-874c449f8305.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-89a69c248502.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-56729c905fe2.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_smoothscroll-polyfill_di-75db2e-686488490524.js

HTTP Request

GET https://github.githubassets.com/assets/environment-cd098098ff2e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_focus-zone_js-c9086a4fb62b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f9b958f5f2df.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_fzy_js_index-05960a-797b1227c4b8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_details-d-ed9a97-841122a1e9d4.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-cd48220d74d5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_delegated-events_dist_in-3efda3-701acb69193f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-2e8678-34feeec9c894.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_clipboard-copy-element_-782ca5-54763cd55b96.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-3959a9-5779869d7165.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_onfocus_ts-ui_packages_trusted-types-policies_policy_ts-ui_packages-6fe316-9d50d6f10c3d.js

HTTP Request

GET https://github.githubassets.com/assets/github-elements-074e91131d8f.js

HTTP Request

GET https://github.githubassets.com/assets/element-registry-207a3f1b3875.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-7901e7-dc88587c14ed.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_stack-68835d-a18220f1db8d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_github_hotkey-1a1d91-fa9f29a8514b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_session-resume_dist_index_js-node_modules_primer_behaviors_dist_e-ac74c6-5e03381c44b5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-53b423ede32a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_textarea-autosi-9e0349-ab4976fc78a6.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-e15463ecf7e6.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_onfocus_ts-app_ass-421cec-f0e1d31bff9a.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-112600808cf9.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-467754-8b1a4442f9b3.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-4accd4baf37d.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-app_assets_modules_github_filter-sort_ts-app_assets_-6deafe-fc95155e233a.js

HTTP Request

GET https://github.githubassets.com/assets/behaviors-3b4c83250375.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-global-3ddac678adaf.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-62113d33abd1.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-00df584d9e79.js

HTTP Request

GET https://github.githubassets.com/assets/codespaces-1f3309c400b4.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_filter--0879fe-bcfcfd976be7.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_repositories_get-repo-element_ts-4fc152f40452.js

HTTP Request

GET https://github.githubassets.com/assets/repositories-22e89d7b03b0.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-e73b311a14f1.js

HTTP Request

GET https://github.githubassets.com/assets/code-menu-a8d08997ac4f.js

HTTP Request

GET https://github.githubassets.com/assets/react-lib-7b7b5264f6c1.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_primer_octicons-react_di-b40d97-06881c63f955.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Box_Box_js-55a9038b54f0.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Button_Button_js-b0edbfb6a9e5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_TooltipV2_Tooltip_js-4d5019830e3c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_clsx_dist_clsx_m_js-node_modules_primer_react_node_modules_primer_octico-c56103-e91295e60abd.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_ActionList_index_js-f646728c385c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_ActionMenu_ActionMenu_js-node_modules_primer_react_-5b2420-048f91dcedb3.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Text_Text_js-node_modules_primer_react_lib-esm_Text-7845da-adcc76ee8848.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_FormControl_FormControl_js-1f51ab2bdcca.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_FilteredActionList_FilteredActionList_js-5a52bf212e2b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Dialog_js-node_modules_primer_react_lib-esm_Feature-cdf735-892e8f58058f.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_react-core_create-browser-history_ts-ui_packages_safe-storage_safe-storage_ts-ui_-682c2c-7a1e99981675.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu-be1efa498152.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Dialog_Dialog_js-node_modules_primer_react_lib-esm_-bd7638-683c833a31df.js

HTTP Request

GET https://github.githubassets.com/assets/keyboard-shortcuts-dialog-15a4cf222dbb.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js

HTTP Request

GET https://github.githubassets.com/assets/sessions-b81e688feb0f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_react-router-dom_dist_index_js-c5568c29d405.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_UnderlineNav_index_js-a48891f88da5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_primer_react-4d507b-85f1dac4ce7d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_AvatarStack_AvatarStack_js-node_modules_primer_reac-cd52f5-34ef2ba7726b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Dialog_Dialog_js-node_modules_primer_react_lib-esm_-3275d6-74049e4bc2bd.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_paths_index_ts-9eb3412d85a7.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-7b0796d1324c.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_copy-to-clipboard_index_ts-ui_packages_react-core_use-feature-flag_ts-ui_packages-9fa6b6-6e8c63eb2d15.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-9a3d65-c2af6875bd6f.js

HTTP Request

GET https://github.githubassets.com/assets/repos-overview-84420f9ffa55.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_primer_behaviors_dist_esm_anchored-position_js-node_modules_github_memoi-4b0bd5-b63d4c76d546.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-72e65e1a9e50.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-04fb8f0-1620a267eab5.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-3a568db843b2.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-ui_packages_safe-storage_safe-storage_ts-90c65e701241.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_assets_modules_github_jump-to_ts-0decd35df3b4.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_form-utils_form-utils_ts-ui_packa-cd5fe9-2993ae65b9a8.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-a30501e51b3a.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-b8a0d9bc2ed9.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-ui_packages_trusted-types-policies_policy_ts--77a9d9-5febadf19308.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-24bd498e34f6.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/react-code-view.234ae39ff1fa1232236c.module.css

HTTP Request

GET https://github.githubassets.com/assets/wp-runtime-e9fc2a6de642.js

HTTP Request

GET https://github.githubassets.com/assets/element-registry-f7a66f1ddeb6.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_ConfirmationDialog_ConfirmationDialog_js-099e8bfead83.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_Heading_Heading_js-node_modules_primer_react_lib-es-96435f-69dda7b301fe.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_react_lib-esm_TreeView_TreeView_js-163f241772cf.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_scroll-into-view_js-node_modules_primer_react_-3602e6-08dffc43caa6.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_react-core_register-app_ts-d92f692cd90a.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-f45efb-a5bb4a693481.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_repos-file-tree-view_repos-file-tree-view_ts-ui_packages_feature-request_FeatureR-ec5225-ec38d5ad4ab9.js

HTTP Request

GET https://github.githubassets.com/assets/react-code-view-bea370344f2f.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
4.7kB
9
10
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
4.7kB
9
10
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
4.7kB
9
10
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
4.7kB
9
10
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
4.7kB
9
10
185.199.109.133:443

https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico

tls, http2

msedge.exe

6.6kB
152.6kB
99
151

HTTP Request

GET https://avatars.githubusercontent.com/u/63458929?s=64&v=4

HTTP Request

GET https://avatars.githubusercontent.com/u/123590232?s=64&v=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/63458929?v=4&size=40

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/123590232?v=4&size=40

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/116862894?v=4&size=40

HTTP Response

200

HTTP Request

GET https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico

HTTP Response

200
185.199.109.133:443

avatars.githubusercontent.com

tls

msedge.exe

1.0kB
4.7kB
11
9
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
185.199.110.154:443

https://github.githubassets.com/favicons/favicon.png

tls, http2

msedge.exe

3.1kB
23.6kB
41
43

HTTP Request

GET https://github.githubassets.com/favicons/favicon.svg

HTTP Request

GET https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/favicons/favicon.png

HTTP Response

200

HTTP Response

200
140.82.114.21:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

182.6kB
79.2kB
411
384

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204
140.82.114.21:443

collector.github.com

tls

msedge.exe

885 B
4.3kB
8
5
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

10.5kB
12.9kB
42
48

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
20.26.156.216:443

https://codeload.github.com/SysToad64/GDI-and-Bytebeats/zip/refs/heads/main

tls, http2

msedge.exe

3.7MB
218.1MB
79606
156170

HTTP Request

GET https://codeload.github.com/Da2dalus/The-MALWARE-Repo/zip/refs/heads/master

HTTP Response

200

HTTP Request

GET https://codeload.github.com/SysToad64/GDI-and-Bytebeats/zip/refs/heads/main

HTTP Response

200
104.117.183.114:443

https://pulsar.ebay.com.au/plsr/mpe/0/DFLT/9?

tls, http2

msedge.exe

15.8kB
7.1kB
26
29

HTTP Request

POST https://pulsar.ebay.com.au/plsr/mpe/0/DFLT/9?

HTTP Response

200
185.235.86.0:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.202:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.0:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.202:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.2:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.219:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.219:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.2:443

ag.gbc.criteo.com

msedge.exe

260 B
5
150.171.27.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13
150.171.27.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13
150.171.27.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13
150.171.27.10:443

https://tse1.mm.bing.net/th?id=OADD2.10239357290389_1WHXB2JL6W3CH3HF1&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

tls, http2

108.6kB
3.1MB
2271
2265

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239317300964_1C92FDN74123R86HE&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239360615986_1M5N6Y5ACPFWCCI4D&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239317301397_1RRG7O37Z0P13Z6K4&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239360615987_16QLWX2YIZJRGGD7R&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239357290388_16CMXFO1MXGSZHTL5&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239357290389_1WHXB2JL6W3CH3HF1&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Response

200
150.171.27.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13
185.235.86.19:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.220:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.19:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.220:443

gem.gbc.criteo.com

msedge.exe

260 B
5
173.222.211.40:443

aefd.nelreports.net

tls

msedge.exe

1.1kB
913 B
8
8
173.222.211.40:443

aefd.nelreports.net

tls

msedge.exe

1.1kB
913 B
8
8
173.222.211.40:443

https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp

tls, http

msedge.exe

2.4kB
6.1kB
19
20

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE

HTTP Response

429

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp

HTTP Response

200
185.235.86.13:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.204:443

gem.gbc.criteo.com

msedge.exe

260 B
5
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

9.1kB
12.9kB
44
47

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
185.235.86.13:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.204:443

gem.gbc.criteo.com

msedge.exe

260 B
5
20.26.156.215:443

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Email-Worm

tls, http2

msedge.exe

7.9kB
173.2kB
97
157

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/spoofed_commit_check/02066b55d8b8271b199dbd1eb1a9b31fd38dfe71

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/branch-count

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tag-count

HTTP Response

204

HTTP Response

200

HTTP Response

304

HTTP Response

304

HTTP Response

304

HTTP Response

304

HTTP Response

304

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Banking-Malware

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Banking-Malware

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Banking-Malware

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Banking-Malware

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Email-Worm

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Email-Worm

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Email-Worm

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Email-Worm

HTTP Response

200

HTTP Response

200

HTTP Response

200
185.235.87.206:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.5:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.206:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.5:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.209:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.15:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.15:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.209:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.18:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.212:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.212:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.18:443

ag.gbc.criteo.com

msedge.exe

260 B
5
20.26.156.215:443

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Joke

tls, http2

msedge.exe

2.8kB
22.4kB
22
29

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Joke

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Joke

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Joke

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Joke

HTTP Response

200

HTTP Response

200

HTTP Response

200
185.235.86.25:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.210:443

gem.gbc.criteo.com

msedge.exe

260 B
5
185.235.86.25:443

ag.gbc.criteo.com

msedge.exe

260 B
5
185.235.87.210:443

gem.gbc.criteo.com

msedge.exe

260 B
5
95.101.129.200:443

r.bing.com

tls, http2

msedge.exe

1.1kB
970 B
10
9
95.101.129.194:443

th.bing.com

tls, http2

msedge.exe

996 B
930 B
7
8
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
216.58.214.174:443

https://www.youtube.com/

tls, http2

msedge.exe

2.9kB
59.0kB
38
58

HTTP Request

GET https://www.youtube.com/
216.58.214.174:443

www.youtube.com

tls, http2

msedge.exe

999 B
8.1kB
9
9
172.217.20.214:443

https://i.ytimg.com/generate_204

tls, http2

msedge.exe

1.9kB
6.7kB
18
18

HTTP Request

GET https://i.ytimg.com/generate_204
142.250.102.84:443

https://accounts.google.com/ServiceLogin?service=youtube&uilel=3&passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Fsignin%3Faction_handle_signin%3Dtrue%26app%3Ddesktop%26hl%3Den%26next%3D%252Fsignin_passive%26feature%3Dpassive&hl=en

tls, http2

msedge.exe

2.2kB
7.7kB
19
20

HTTP Request

GET https://accounts.google.com/ServiceLogin?service=youtube&uilel=3&passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Fsignin%3Faction_handle_signin%3Dtrue%26app%3Ddesktop%26hl%3Den%26next%3D%252Fsignin_passive%26feature%3Dpassive&hl=en
142.250.201.174:443

https://suggestqueries-clients6.youtube.com/complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=2&gs_id=8&q=po&xhr=t&xssi=t

tls, http2

msedge.exe

4.3kB
17.8kB
34
46

HTTP Request

OPTIONS https://play.google.com/log?format=json&hasfast=true&authuser=0

HTTP Request

OPTIONS https://suggestqueries-clients6.youtube.com/complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=0&gs_id=1&q=&xhr=t&xssi=t

HTTP Response

403

HTTP Request

OPTIONS https://suggestqueries-clients6.youtube.com/complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=1&gs_id=4&q=p&xhr=t&xssi=t

HTTP Request

OPTIONS https://suggestqueries-clients6.youtube.com/complete/search?client=youtube&hl=en&gl=us&sugexp=ytsnzrdl3p22%2Cytpo.bo.me%3D1%2Cytposo.bo.me%3D1%2Cytpo.bo.zo.ms%3D0%2Cytposo.bo.zo.ms%3D0%2Cytpo.bo.zo.mndr%3D15%2Cytposo.bo.zo.mndr%3D15%2Cytpo.bo.zo.epq%3D0%2Cytposo.bo.zo.epq%3D0%2Cytpo.bo.zo.epn%3D1%2Cytposo.bo.zo.epn%3D1%2Cytpo.bo.ndr.e%3D1%2Cytposo.bo.ndr.e%3D1%2Cytpo.bo.ndr.vsz%3D1%2Cytposo.bo.ndr.vsz%3D1%2Cytpo.bo.ndr.mi%3D51231706%2Cytposo.bo.ndr.mi%3D51231706%2Cytpo.bo.ro.mndr%3D100%2Cytposo.bo.ro.mndr%3D100%2Ccfro%3D1%2Cytpo.bo.me%3D0%2Cytposo.bo.me%3D0&gs_rn=64&gs_ri=youtube&ds=yt&cp=2&gs_id=8&q=po&xhr=t&xssi=t
142.250.201.170:443

https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

tls, http2

msedge.exe

2.0kB
7.1kB
19
21

HTTP Request

OPTIONS https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.238:443

https://youtube.com/

tls, http2

msedge.exe

1.9kB
9.7kB
17
21

HTTP Request

GET https://youtube.com/
185.235.87.216:443

gem.gbc.criteo.com

msedge.exe

208 B
4
185.235.86.6:443

ag.gbc.criteo.com

msedge.exe

208 B
4
185.235.87.216:443

gem.gbc.criteo.com

msedge.exe

208 B
4
185.235.86.6:443

ag.gbc.criteo.com

msedge.exe

208 B
4
172.217.18.206:443

consent.youtube.com

tls, http2

msedge.exe

1.0kB
8.1kB
10
10
142.250.179.98:443

googleads.g.doubleclick.net

tls, http2

msedge.exe

999 B
5.9kB
9
9
142.250.74.230:443

https://static.doubleclick.net/instream/ad_status.js

tls, http2

msedge.exe

1.9kB
7.0kB
17
19

HTTP Request

GET https://static.doubleclick.net/instream/ad_status.js
216.58.215.33:443

yt3.ggpht.com

tls, http2

msedge.exe

953 B
10.8kB
8
11
216.58.215.33:443

https://yt3.ggpht.com/UljfaLgekOhXwTBA3YNO1gZustoMHdGEFpiAa0o3FJwtI5MFRUwV7MC1TKfgfS6EC09OBmC8mg=s68-c-k-c0x00ffffff-no-rj

tls, http2

msedge.exe

2.9kB
20.4kB
30
35

HTTP Request

GET https://yt3.ggpht.com/3Ejg9L07C6Jt7TA87Zb4LNb0AFSZPv2jxaOgLt_piKNsrU6huE-gvdacd8-JIM24hqTqkTSVNw=s68-c-k-c0x00ffffff-no-rj

HTTP Request

GET https://yt3.ggpht.com/SS_d8TvHvTIfRhVKtb-PUHkZqWp2jh_MJNISUcDZc6DikJrVdPo1ewU2Y-RfmP2eHThkTpNW=s68-c-k-c0x00ffffff-no-rj

HTTP Request

GET https://yt3.ggpht.com/UljfaLgekOhXwTBA3YNO1gZustoMHdGEFpiAa0o3FJwtI5MFRUwV7MC1TKfgfS6EC09OBmC8mg=s68-c-k-c0x00ffffff-no-rj
216.58.215.33:443

yt3.ggpht.com

tls, http2

msedge.exe

999 B
10.8kB
9
11
74.125.153.200:443

https://rr3---sn-4g5edn6r.googlevideo.com/generate_204

tls, http

msedge.exe

3.2kB
6.0kB
15
15

HTTP Request

GET https://rr3---sn-4g5edn6r.googlevideo.com/generate_204

HTTP Response

204
20.26.156.215:443

https://github.com/SysToad64/GDI-and-Bytebeats/archive/refs/heads/main.zip

tls, http2

msedge.exe

28.3kB
463.0kB
302
443

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/security/overall-count

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/refs?type=branch

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/tree-commit-info/main/I_Am_a_potato

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/refs?type=branch

HTTP Response

200

HTTP Response

304

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/refs?type=branch

HTTP Response

200

HTTP Response

304

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Request

PUT https://github.com/repos/preferences

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Response

404

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Response

302

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/potato.ico

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/potato.ico

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/potato.ico

HTTP Response

302

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/raw/main/I_Am_a_potato/potato.ico

HTTP Response

302

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/potato.ico

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/README.md

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/README.md

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.sln

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.sln

HTTP Request

PUT https://github.com/repos/preferences

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.sln

HTTP Response

404

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj.filters

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.vcxproj.user

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/Main.cpp

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/Main.cpp

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/Main.cpp

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/README.md

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/README.md

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/README.md

HTTP Response

304

HTTP Response

304

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/resource.h

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/resource.h

HTTP Request

PUT https://github.com/repos/preferences

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/resource.h

HTTP Response

404

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/README.md

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/README.md

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/README.md

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/blob/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Request

PUT https://github.com/repos/preferences

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Response

404

HTTP Response

304

HTTP Response

304

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/tree/main/I_Am_a_potato

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main/I_Am_a_potato

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/tree-commit-info/main/I_Am_a_potato

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/deferred-metadata/main/I_Am_a_potato

HTTP Response

304

HTTP Response

304

HTTP Response

304

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/tree/main

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/spoofed_commit_check/6b0fea84fe63dcee86b3ed62ccc26a4b6d3e7930

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/hovercards/citation/sidebar_partial?tree_name=main

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/used_by_list

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/latest-commit/main

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/tree-commit-info/main

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/branch-count

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/tag-count

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/SysToad64/GDI-and-Bytebeats/archive/refs/heads/main.zip

HTTP Response

302
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

62.3kB
11.6kB
77
63

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
185.199.109.133:443

https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico

tls, http2

msedge.exe

4.6kB
65.4kB
69
74

HTTP Request

GET https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/I_Am_a_potato.rc

HTTP Response

200

HTTP Request

OPTIONS https://raw.githubusercontent.com/SysToad64/GDI-and-Bytebeats/main/I_Am_a_potato/potato.ico

HTTP Response

403
20.26.156.210:443

api.github.com

tls

msedge.exe

1.6kB
4.0kB
10
9
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

6.8kB
8.0kB
29
29

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
104.117.183.40:443

https://pulsar.ebay.com.au/plsr/mpe/0/DFLT/9?

tls, http2

msedge.exe

6.8kB
2.2kB
17
17

HTTP Request

POST https://pulsar.ebay.com.au/plsr/mpe/0/DFLT/9?

HTTP Response

200
104.126.37.153:443

https://www.bing.com/fd/ls/lsp.aspx

tls, http2

msedge.exe

135.6kB
664.4kB
606
715

HTTP Request

GET https://www.bing.com/qbox?query=py&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=9a7825d2826d43e292fb52b682c532df&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=pyt&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=706b18c0ab0d45f997b302545ced2a1e&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=pytn&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=c9a495fb9b5f446fb174c55779c715a7&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=pyt&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=e679bfc81cab46819b853b23edf020dd&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=pyto&language=en-US&pt=EdgBox&cvid=e5ca23e46a844570ba33da4c3775e576&ig=e87b69c8aa3147509816ed86f48cd9c7&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:18,%22BC%22:265,%22SE%22:-1,%22TC%22:-1,%22H%22:336,%22BP%22:337,%22CT%22:338,%22IL%22:1},%22ad%22:[43,164,1263,609,1263,2075,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145172432%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145172432%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A506%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172438%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%224%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=7FEDE16B20BF40EBAE3667290AAD2E3A&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172442%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172442%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172444%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A740%2C%22time%22%3A747%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145172587%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145172588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145172588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=7FEDE16B20BF40EBAE3667290AAD2E3A

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&IID=SERP.5065&q=pyto&cvid=e5ca23e46a844570ba33da4c3775e576&aqs=edge..69i57j0l6.4479j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/supercaptionsassets?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&IID=SERP.5689

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45e1534ad48e5b20d9f2f22920811%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145172604%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45e1534ad48e5b20d9f2f22920811%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145172604%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172623%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172751%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172751%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145172752%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145172757%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.PPT&DATA={%22S%22:371,%22E%22:682,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Request

GET https://www.bing.com/auth/getToken

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22613%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22923%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145172763%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145172786%2C%22Name%22%3A%22SuperCaptionLoaded%22%2C%22FID%22%3A%22SuperCaption%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145172807%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145172917%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145173047%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145173047%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173841%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173885%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173940%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145173952%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145174041%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145174135%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145174845%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=pyto&cp=4&csr=1&zis=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.822f3b02069ea52e27e0e23959460f08&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.fb76c7b8d00d3afe54466d81b9510d16&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145175713%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%2C%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1724145175768%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145175860%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%22%2C%22AsResponseLength%22%3A%22849%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145175984%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyto%2Cig%3A929E527FF8E14D65954AB8ECFF520D30%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145176005%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145177591%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A5753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145177593%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=pyt&cp=3&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=py&cp=2&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.44c0ebcde02ad21806d5c6cb3b1e340b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.FhPSBNrsr4kGuxXvSo7wnSIZ6z6yAZZ4hGj7UY8aRq8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.5e68780d6e363f4bfbb9e53af22cd37f&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=pyto&mkt=en-gb&qry=p&cp=1&csr=1&msbqf=false&pths=1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.f96c3170bf3516e1d0c5b10266c9d7b8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.8UbglgdMZ9k0Zpei0FYEWzXz6l3SC6ErGnGQWYpjLdE&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145177629%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22748%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145177750%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apyt%2Ci%3A1%2Cig%3AEC369A8C78964C4E96646E4DB8DD91C3%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145177751%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145177793%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145177842%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%22%2C%22AsResponseLength%22%3A%221012%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145177966%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Apy%2Ci%3A2%2Cig%3A5EE0FA413ABD4940BA9E5BE3FF33D2FB%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145177967%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145178031%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1724145178052%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%22%2C%22AsResponseLength%22%3A%221026%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145178192%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ap%2Ci%3A3%2Cig%3A43C9B13208F44BE2959AC7A22C8E2214%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1724145178192%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/search?q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0&sid=044E27407A3C6EFA0F8B33A17B066F22&format=snrjson&jsoncbid=0

HTTP Request

GET https://www.bing.com/fd/ls/GLinkPing.aspx?IG=43C9B13208F44BE2959AC7A22C8E2214&ID=autosuggest,5004.1&PR={%22i%22:%22m%22,%22et%22:2409}

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FEDE16B20BF40EBAE3667290AAD2E3A&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Apython%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1724145180601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/6K69T54J8GYMst0wwfWrSFOSqoI.svg

HTTP Request

GET https://www.bing.com/rp/a71zIttPDq6PMxmf_iKDVzECFPw.svg

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:437,%22SE%22:-1,%22TC%22:-1,%22H%22:537,%22BP%22:570,%22CT%22:570,%22IL%22:21},%22ad%22:[43,164,1263,609,1263,3449,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/news/NewsAnswerV2CarouselAjax?q=Python&eventans=1&eventland=0&eventrel=1&width=608&nccl=Lite&IG=BA1224B9C6314D6C87A4FEDBE74E9385&IID=NEWS.401&SFX=0&disablecarousel=1&OMWQ=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181359%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145181359%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145181369%2C%22Name%22%3A9363%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181369%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%226%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=BA1224B9C6314D6C87A4FEDBE74E9385&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181548%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Time%22%3A9704%2C%22time%22%3A9707%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145181548%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A9709%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145181549%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A9709%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145181549%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=BA1224B9C6314D6C87A4FEDBE74E9385

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=BA1224B9C6314D6C87A4FEDBE74E9385&IID=SERP.5065&q=python&qs=LS&pq=p&sk=HS1&sc=10-1&cvid=7FEDE16B20BF40EBAE3667290AAD2E3A&FORM=QBRE&sp=2&lq=0

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OJ.kOKMdnoIEscfWg&pid=news&w=43&h=12&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.do2qKbu37apMKajyglX9zy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=ODF.OTnMxsbz4F25ZN9IEbv1Ig&pid=news&w=16&h=16&c=14&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.q5fUlMRexwYVjcmIHh07lC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OJ.kTkc0KCzwa1WiQ&pid=news&w=68&h=12&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVF.bWKCl%2FHIn5c38TR0%2F%2BxZXw&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=ODF.pPTO_qfDGMw5U2MDJ6xzpw&pid=news&w=16&h=16&c=14&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.kherjYEI7ug0ENtHUm2qiC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=ODF.PnZjAzMJ6tNZQLJWq4mBPA&pid=news&w=16&h=16&c=14&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.I48oTal63iwX-Ewj5KRLDC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OJ.UvMMFWBgPBDZYg&pid=news&w=66&h=12&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVF.zeVnUkpde9%2FXWiBHn0REUQ&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OVFT.ekbAtZ1Qfktc0547SDYy1C&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OJ.bjzAslfCD2NPLw&pid=news&w=100&h=12&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.e0_Id3C3jjgr6uqUIaH6rS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OJ.90xplnVYmlI0WA&pid=news&w=69&h=12&rs=2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Request

GET https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=08/20/2024&form=QBRE

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45e1d16394888b33cf26a9158508d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145181557%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45e1d16394888b33cf26a9158508d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145181557%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181576%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145181631%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145181631%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145181782%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181813%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22true%22%2C%22SuppressionReason%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145181861%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145181882%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145181887%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.PPT&DATA={%22S%22:616,%22E%22:1127,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Request

GET https://www.bing.com/auth/getToken

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145181910%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22613%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145181911%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22923%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145181911%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145182014%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/fLTkaxBENjCfWBJcoPzD_iL_Jdk.png

HTTP Request

GET https://www.bing.com/rp/f486BDVfMqELn3q3UfwjgS6uu4k.png

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1363ADC093C14FE68F8576F97431E154&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:6,%22SE%22:-1,%22TC%22:-1,%22H%22:195,%22BP%22:1009,%22CT%22:1010,%22IL%22:0},%22ad%22:[-1,-1,320,374,320,374,0],%22net%22:%22undefined%22}&P=rewards&DA=DUBE01

HTTP Request

POST https://www.bing.com/web/xls.aspx

HTTP Response

204

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181372%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181372%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145181375%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=BA1224B9C6314D6C87A4FEDBE74E9385&ID=SERP,5532.5&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D1acd04dd739bb744JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUzMg%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dpython%26u%3Da1aHR0cHM6Ly93d3cucHl0aG9uLm9yZy9kb3dubG9hZHMv%26ntb%3D1

HTTP Request

GET https://www.bing.com/ck/a?!&&p=1acd04dd739bb744JmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTUzMg&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=python&u=a1aHR0cHM6Ly93d3cucHl0aG9uLm9yZy9kb3dubG9hZHMv&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

200

HTTP Response

204
104.126.37.153:443

www.bing.com

tls, http2

msedge.exe

1.1kB
1.0kB
9
10
95.101.129.208:443

https://r.bing.com/rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg

tls, http2

msedge.exe

3.6kB
9.4kB
18
22

HTTP Request

GET https://r.bing.com/rp/I0oqL6KlxQg6fTOUf0zgtDXii0M.svg

HTTP Request

GET https://r.bing.com/rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg

HTTP Response

200

HTTP Response

200
95.101.129.208:443

https://r.bing.com/rp/paUjPXJZwJJt08_2gEwJFetOkG4.gz.js

tls, http2

msedge.exe

8.4kB
175.6kB
116
163

HTTP Request

GET https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

HTTP Request

GET https://r.bing.com/rp/8tH293BphaRNSPJ2rM8AoZ1AZcU.br.js

HTTP Request

GET https://r.bing.com/rp/FuMDgHCeJzgAWeLCBq2RRKwyGUA.br.js

HTTP Request

GET https://r.bing.com/rp/ux1mL_BeI5W_NEKqkFEN1fLUu0o.br.js

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Request

GET https://r.bing.com/rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js

HTTP Request

GET https://r.bing.com/rp/bGGMgLQKrBqF0e1Gl4gVARrbZSE.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/cD-VOAGiLxuv3XXo37JO9cObcPg.br.js

HTTP Request

GET https://r.bing.com/rp/X1Cjkakv1epBOGfkIjYblQJvweU.br.js

HTTP Request

GET https://r.bing.com/rp/e2l2_2YHl4mn3fcGhYEhECN86ik.br.js

HTTP Request

GET https://r.bing.com/rp/92-FtHmSi-ViMO5dPWNJUcPKLcI.br.js

HTTP Request

GET https://r.bing.com/rp/BMHcFIy-Zeu4GqfEnHOyABd5ZQc.br.js

HTTP Request

GET https://r.bing.com/rp/uq6jewoGavoU4pK6nYtO9pAum4o.br.js

HTTP Request

GET https://r.bing.com/rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/-Fw4kvKJlrDiWHon9-7scqImWDE.gz.js

HTTP Request

GET https://r.bing.com/rp/GMIzwtneXaT3OZyIT4HPi9VAdAY.gz.js

HTTP Request

GET https://r.bing.com/rp/6wzJBpbyuAoCS5bfkKiW0Aw2R6o.gz.js

HTTP Request

GET https://r.bing.com/rp/EzFgK8PyVGP4CdGFEGyqQSfLKpA.gz.js

HTTP Request

GET https://r.bing.com/rp/nGczKe0kim5RNrhI35T372_931I.gz.js

HTTP Request

GET https://r.bing.com/rp/DicRs1X5x7sMwnmwcxBuO2kpGeI.gz.js

HTTP Request

GET https://r.bing.com/rp/VtjE_XIGplS2hp6VaMOcNKVZqbo.gz.js

HTTP Request

GET https://r.bing.com/rp/5NUzUTlpAcMkl-Mmw3zA8g0YAjs.gz.js

HTTP Request

GET https://r.bing.com/rp/FxdcEV3ujzwMzNdEegYt9w58hMY.gz.js

HTTP Request

GET https://r.bing.com/rp/TWG5wgdV8ROs_ZGvySDjvD6mS7E.gz.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/paUjPXJZwJJt08_2gEwJFetOkG4.gz.js

HTTP Response

200
95.101.129.235:443

https://th.bing.com/th?id=OSK.efd0cd0fee4bdd2e0c7fcd241c61dda5&pid=news&w=30&h=30&c=14&rs=1&qlt=90

tls, http2

msedge.exe

12.1kB
81.9kB
81
95

HTTP Request

GET https://th.bing.com/th?id=OADD2.7490518607737_1EEF6ZTSG1M8QWVKC6&w=18&h=18&o=6&pid=21.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c67e6990-5017-478a-997f-5ebe44002c37&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.e8f92e1f-a1b6-41ff-ad2a-5c2537f37f88&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c67e6990-5017-478a-997f-5ebe44002c37&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.5d4f1eed-f1e9-4826-a992-3b3a48c27c20&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.e8f92e1f-a1b6-41ff-ad2a-5c2537f37f88&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.94b0d12e-7c9f-4f0a-a61c-1d00f85b2fec&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSAAS.DB62A6028B21B3356F4626BCDC1E6180&w=72&h=72&c=17&rs=1&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OJ.kTkc0KCzwa1WiQ&pid=news&w=68&h=12&rs=2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.jmsYEd-pRDMlaS8YxKrW2gAAAA&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.8e0737c0-389e-43eb-9bcc-3c5e88f9f86a&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.bfe86b0a-0a95-49ca-9365-94a4f348a0c8&w=18&h=18&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=ODF.0QY68YH-YG5V7ZPdW4ZxaQ&w=17&h=17&c=2&o=6&pid=WebQS

HTTP Request

GET https://th.bing.com/th?id=OIP.E3mkGJ7yr_I-uSjUNllnmgAAAA&w=216&h=115&c=2&o=6&pid=WebQS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=300&h=186&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.kpZM8CEDkVvw06jmcUOmgC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.jOFCyWjCHyFwUkLlGxa3eS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.q5fUlMRexwYVjcmIHh07lC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.4EY4U1qzhsSaCSHlIAASqy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.do2qKbu37apMKajyglX9zy&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.kherjYEI7ug0ENtHUm2qiC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OSK.Zl2rYbEOa6RnR5PxgY7VLDcsFkfskAZrZiNUjyMAlyM&pid=news&w=30&h=30&c=14&rs=1&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.XTRqJyeFz_ZY_-3eXR19gS&pid=News&w=30&h=30&c=14&rs=1&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OSK.efd0cd0fee4bdd2e0c7fcd241c61dda5&pid=news&w=30&h=30&c=14&rs=1&qlt=90

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
95.101.129.235:443

th.bing.com

tls, http2

msedge.exe

1.1kB
970 B
9
9
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
13.107.5.80:443

https://services.bingapis.com/favicon/?url=python.org

tls, http2

msedge.exe

2.4kB
10.8kB
17
21

HTTP Request

GET https://services.bingapis.com/favicon/?url=python.org

HTTP Response

200
52.167.30.171:443

https://fpt.microsoft.com/images/Clear.PNG?ctx=Wlcb1.0&session_id=044E27407A3C6EFA0F8B33A17B066F22&tkt=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%2b26TS%2ffhLyibk8ryI%2blR2FZWw%2fllQG20UJlowrJ2ujjIaM1bRvkv24x%2bTlYn2KYf9Oha3IETLqxw7e%2fz2Va6pBv0zO0qVFGGXHRbBNZRgmM0KxX9nOwXSnT7JtXm67wQtgp0BeaqIyRtTPcd6cuanjX1GYq04GHpxeR4jy8SmN%2fmj01cBYEMTDPr7SSl1XjSYJEiCiYK536P389HTi6iWvrvjP8WvAsUkgxDNGFQJIZbqyTd4%3d

tls, http2

msedge.exe

5.7kB
21.0kB
32
34

HTTP Request

GET https://fpt.microsoft.com/tags?session_id=044E27407A3C6EFA0F8B33A17B066F22

HTTP Response

200

HTTP Request

GET https://fpt.microsoft.com/Images/Clear.PNG?ctx=jscb1.0&session_id=044E27407A3C6EFA0F8B33A17B066F22&CustomerId=02C58649-E822-405B-B6C3-17A7509D2FCC&esi=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&eci=eyJ1dmRyIjoiR29vZ2xlIEluYy4gKE5WSURJQSkiLCJ1cmRyIjoiQU5HTEUgKE5WSURJQSwgTlZJRElBIEdlRm9yY2UgUlRYIDMwNjAgVGkgRGlyZWN0M0QxMSB2c181XzAgcHNfNV8wLCBEM0QxMS0xMC4wLjE5MDQxLjU0NikiLCJ2ZHIiOiJXZWJLaXQiLCJyZHIiOiJXZWJLaXQgV2ViR0wiLCJpZHVoIjoiMDFmNTY4YTRjNDUwMjUyZjlmZTMyMDE5NmZhZDk4NWIifQ==&u1=&u3=10.0&u4=x86&u5=undefined

HTTP Request

GET https://fpt2.microsoft.com/Clear.HTML?ctx=Ls1.0&wl=True&session_id=044E27407A3C6EFA0F8B33A17B066F22&id=c9dbef7c-186c-4e3f-81e2-ef993b911f58&w=8DCC0F84BF50860&tkt=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%252b26TS%252ffhLyibk8ryI%252blR2FZWw%252fllQG20UJlowrJ2ujjIaM1bRvkv24x%252bTlYn2KYf9Oha3ID9Hc8ZPMQp%252bzGmj45I35iSnLhIJjWScFTxokVFJY%252bfiGlB0nba8MinsoXz%252ff8ywwSwX8GPuxbmoOhZnSCesTUgtA0JSwcPZeUJ4t0S6GQ%252fj3HPGQMdCO88jYe9RuDuj2WQ6dbmu50Qd25ZySW8iFLdbF55%252bKWNZ3gqS9WCPJc0RaMfYq3vwWQL7U0ncpxSVo&CustomerId=02C58649-E822-405B-B6C3-17A7509D2FCC

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://fpt.microsoft.com/images/Clear.PNG?ctx=Wlcb1.0&session_id=044E27407A3C6EFA0F8B33A17B066F22&tkt=H3ihr9e92IdW6yd1ZgQ9S6iHaRiejIdk0aIJJ5j7uH7BOudQLnA9gsbbg1%2b26TS%2ffhLyibk8ryI%2blR2FZWw%2fllQG20UJlowrJ2ujjIaM1bRvkv24x%2bTlYn2KYf9Oha3IETLqxw7e%2fz2Va6pBv0zO0qVFGGXHRbBNZRgmM0KxX9nOwXSnT7JtXm67wQtgp0BeaqIyRtTPcd6cuanjX1GYq04GHpxeR4jy8SmN%2fmj01cBYEMTDPr7SSl1XjSYJEiCiYK536P389HTi6iWvrvjP8WvAsUkgxDNGFQJIZbqyTd4%3d

HTTP Response

200
151.101.188.223:443

https://www.python.org/static/fonts/fontawesome-webfont.af7ae505a9ee.woff2?v=4.7.0

tls, http2

msedge.exe

511.1kB
27.9MB
10864
20056

HTTP Request

GET https://www.python.org/downloads/

HTTP Response

200

HTTP Request

GET https://www.python.org/static/stylesheets/style.1c0f356ef3c7.css

HTTP Request

GET https://www.python.org/static/stylesheets/mq.f9187444a4a1.css

HTTP Request

GET https://www.python.org/static/stylesheets/no-mq.bf0c425cdb73.css

HTTP Request

GET https://www.python.org/static/js/libs/modernizr.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.python.org/static/js/libs/masonry.pkgd.min.js

HTTP Request

GET https://www.python.org/static/js/libs/html-includes.js

HTTP Request

GET https://www.python.org/static/js/main-min.f5487accf7ed.js

HTTP Request

GET https://www.python.org/static/img/python-logo.png

HTTP Request

GET https://www.python.org/static/img/landing-downloads.0f509c33f57f.png?1576869008

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.python.org/static/fonts/SourceSansPro-Regular-webfont.fd0d51605201.woff

HTTP Request

GET https://www.python.org/static/fonts/SourceSansPro-Bold-webfont.be855452e565.woff

HTTP Request

GET https://www.python.org/static/fonts/FluxRegular.f5549a4fe75f.woff

HTTP Request

GET https://www.python.org/static/fonts/FluxBold.3fd71a747d5c.woff

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.python.org/authenticated

HTTP Response

200

HTTP Request

GET https://www.python.org/box/supernav-python-about/

HTTP Request

GET https://www.python.org/box/supernav-python-downloads/

HTTP Request

GET https://www.python.org/box/supernav-python-documentation/

HTTP Request

GET https://www.python.org/box/supernav-python-community/

HTTP Request

GET https://www.python.org/box/supernav-python-success-stories/

HTTP Request

GET https://www.python.org/box/supernav-python-blog/

HTTP Request

GET https://www.python.org/box/supernav-python-events/

HTTP Request

GET https://www.python.org/static/favicon.ico

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.python.org/ftp/python/3.12.5/python-3.12.5-amd64.exe

HTTP Response

200

HTTP Request

GET https://www.python.org/static/fonts/fontawesome-webfont.af7ae505a9ee.woff2?v=4.7.0

HTTP Response

200
151.101.188.223:443

www.python.org

tls

msedge.exe

1.3kB
5.7kB
14
14
143.244.38.136:443

https://plausible.io/js/script.js

tls, http2

msedge.exe

1.9kB
7.5kB
18
19

HTTP Request

GET https://plausible.io/js/script.js

HTTP Response

200
142.250.74.234:443

https://ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.css

tls, http2

msedge.exe

3.0kB
45.5kB
41
46

HTTP Request

GET https://ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.css
142.250.179.104:443

https://ssl.google-analytics.com/ga.js

tls, http2

msedge.exe

2.5kB
25.0kB
30
30

HTTP Request

GET https://ssl.google-analytics.com/ga.js
104.26.5.62:443

https://media.ethicalads.io/media/client/v1.4.0/ethicalads.min.js

tls, http2

msedge.exe

2.5kB
13.1kB
30
29

HTTP Request

GET https://media.ethicalads.io/media/client/v1.4.0/ethicalads.min.js

HTTP Response

200
52.219.101.209:443

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/fa/94/fa94273e62dc63ae15413103778d64ed.png

tls, http

msedge.exe

3.8kB
58.2kB
34
58

HTTP Request

GET https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/fa/94/fa94273e62dc63ae15413103778d64ed.png

HTTP Response

200
52.219.101.209:443

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/1a/5a/1a5a874923ac188688581482e0bce714.png

tls, http

msedge.exe

3.4kB
30.6kB
25
39

HTTP Request

GET https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/1a/5a/1a5a874923ac188688581482e0bce714.png

HTTP Response

200
52.219.101.209:443

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/03/c7/03c7f16a036e91207c870cfbeceb0c2b.png

tls, http

msedge.exe

3.3kB
21.8kB
23
34

HTTP Request

GET https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/03/c7/03c7f16a036e91207c870cfbeceb0c2b.png

HTTP Response

200
52.219.101.209:443

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/fd/b8/fdb8a556976d36cf0c79aa7645dc2457.png

tls, http

msedge.exe

3.4kB
28.6kB
25
38

HTTP Request

GET https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/fd/b8/fdb8a556976d36cf0c79aa7645dc2457.png

HTTP Response

200
52.219.101.209:443

https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/da/3e/da3e52fe46dddbfec34bc620621015d6.png

tls, http

msedge.exe

3.4kB
26.8kB
24
37

HTTP Request

GET https://s3.dualstack.us-east-2.amazonaws.com/pythondotorg-assets/media/cache/da/3e/da3e52fe46dddbfec34bc620621015d6.png

HTTP Response

200
143.244.38.136:443

https://plausible.io/api/event

tls, http2

msedge.exe

2.0kB
6.6kB
18
19

HTTP Request

POST https://plausible.io/api/event

HTTP Response

202
18.244.155.119:443

https://2p66nmmycsj3.statuspage.io/api/v2/status.json

tls, http2

msedge.exe

2.0kB
8.4kB
19
22

HTTP Request

GET https://2p66nmmycsj3.statuspage.io/api/v2/status.json

HTTP Response

200
95.101.129.209:443

https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145591000%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145591537%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

tls, http2

msedge.exe

250.8kB
816.3kB
925
990

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145182145%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145182145%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182682%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182759%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145182888%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145184994%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145391915%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=e59fc1a8e02e45e2959630eb39fde1d2&oit=1&cp=1&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wi&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=d2fe572972cf44f1b96598aeef68fe12&oit=1&cp=2&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=win&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=1f567bca71b7411c897f96fe5355c909&oit=1&cp=3&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wind&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=422f947bfc7b48d2aae8b4f747daaccd&oit=1&cp=4&pgcl=9

HTTP Request

GET https://www.bing.com/qbox?query=windw&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=7ca2a41405fe47fc98c4578012f4d1cf&oit=1&cp=5&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wind&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=4281f6d09a0248aa9afbf029e60081f7&oit=1&cp=4&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=windo&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=c489a63e552d40ec95ba439d7d9fed00&oit=1&cp=5&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=window&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=7f98e8b1f7734938b8718f1b292b3f10&oit=1&cp=6&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=windows&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=61a4ee7881794f60a1154babf1889ace&oit=1&cp=7&pgcl=9

HTTP Request

GET https://www.bing.com/qbox?query=windows+&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=c04991c67660494a91a9c4e82ccb82bd&oit=1&cp=8&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=windows+v&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=267fc2498d384b12b0e2b9138850fa51&oit=4&cp=9&pgcl=9

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.TALGWRS%22,%22FID%22:%22CI%22,%22Name%22:%22C%22,%22Text%22:%221%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=windows+vi&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=a6ae1ebfde134d82b2555d1a77b82983&oit=4&cp=10&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=windows+vis&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=a49fa2eafac94314a54ead41ab3bfca7&oit=4&cp=11&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=windows+visa&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=ba7da438eff14df1a5931112868687c6&oit=4&cp=12&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=windows+visal&language=en-US&pt=EdgBox&cvid=b23bfc8c234142668b1e86c9164917e3&ig=bb3f64dcee9b4308a43146494d158c1d&oit=4&cp=13&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}]

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=BA1224B9C6314D6C87A4FEDBE74E9385&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.ReturnTop%22,%22FID%22:%22CI%22,%22Name%22:%22ReturnTop15%22,%22Text%22:%22Triggered%22}]

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSAAS.9C68030720D9D9A395307D2216CB183D&w=72&h=72&c=1&rs=1&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/ak5A-kIzM-v9JjRbH7FaoGRYoEw.png

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:1064,%22SE%22:-1,%22TC%22:-1,%22H%22:5206,%22BP%22:5363,%22CT%22:5368,%22IL%22:6},%22ad%22:[-1,-1,1263,592,1263,4085,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145460041%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.85%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145460041%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145460050%2C%22Name%22%3A1540%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460050%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460051%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460052%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.jvndrtiaEOVmRvEDOmZXigAAAA&w=80&h=80&c=1&vt=10&bgcl=78be48&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.KbeMg52rLquVkIcFGr7OUQHaEK&w=174&h=104&c=7&bgcl=2141e8&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OIP.4VKAFnr0dKsQLz2GC2lnBQHaEd&w=162&h=104&c=7&bgcl=b1ec58&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OIP.U8Hd96ZtEFj2o1se6FW-7gAAAA&w=132&h=104&c=7&bgcl=279dac&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OIP.VgiPs6SuajgtWEZDPOYNzAHaFd&w=134&h=104&c=7&bgcl=98e8b5&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5huSr-25R36nE1gCL_70uwHaEK&w=80&h=80&c=1&vt=10&bgcl=0f7f96&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OVP.rEHP8vZGu1aLSAoGIVkHjQHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.bUrLEH1zIRbH44gN5ZbaZAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.mstIxOVSMDameJHNxmhPbwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.j4VIRkxZLELaHzcP9JjsBgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.mKFFDnjaXvjdnrVyq8ELbgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Visual+Studio+Download+Windows+10&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Visual+Studio+Installation&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Visual+Studio+Windows+App&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Visual+Studio+Free&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Visual+Studio+for+Windows+10&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.0ca77b63-d5a1-48b7-9abf-580203aa77a2&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP._jzb5pbqlfzCQMlopKB1bAAAAA&w=80&h=80&c=1&vt=10&bgcl=3ce1f1&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5huSr-25R36nE1gCL_70uwHaEK&w=80&h=80&c=1&vt=10&bgcl=15a788&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.dcbba1df-d660-42ec-a587-4f58db3a0d71&w=18&h=18&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=20&h=20&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=ODLS.430a0715-1fb0-4aa1-9ba4-b59518dbd57b&w=20&h=20&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.aa79021de5b343c2e7f816cfecc3e4a8&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.f20f011c967ff1de1934b279cb7bbc14&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.bt-mwPNoOhxcWcHX5f59Qu2enIr3-zmRB25NTkzPgNQ&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.d8b484f1a0901047648b7a7f78785658&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=A7A59F578B63451A9FD978E5BBB10415&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460055%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460056%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460060%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A6102%2C%22time%22%3A6105%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145460288%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A6105%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145460288%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A6106%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145460289%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=A7A59F578B63451A9FD978E5BBB10415

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=A7A59F578B63451A9FD978E5BBB10415&IID=SERP.5065&q=windows+visual+studio&cvid=b23bfc8c234142668b1e86c9164917e3&aqs=edge.4.69i57j0l6.56718j0j9&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum18%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f18%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2266c45f2fce04430d955cb36ac4262664%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145460298%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45f2fce04430d955cb36ac4262664%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145460298%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145460331%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145460387%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145460387%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145460528%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461009%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461009%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145461010%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OSK.a3a020f8149d7e39e1aea30c2ace98ca&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.a3a020f8149d7e39e1aea30c2ace98ca&w=102&h=102&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145461027%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145461028%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145461032%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/auth/getToken

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&Type=Event.PPT&DATA={%22S%22:5407,%22E%22:6392,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145461048%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%225884.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145461049%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%226864.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145461049%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145461593%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145463070%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463328%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145463770%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463779%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145463810%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145463810%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%2C%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1724145463867%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145463977%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=A7A59F578B63451A9FD978E5BBB10415&ID=SERP,5550.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dc712eb574c26efbfJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTU1MA%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D1d1bd82d-a747-6423-2d91-cccca67d65be%26psq%3Dwindows%2Bvisual%2Bstudio%26u%3Da1aHR0cHM6Ly9hcHBzLm1pY3Jvc29mdC5jb20vZGV0YWlsL1hQRENGSkRLTFpKTFA4P2xhdW5jaD10cnVlJm1vZGU9ZnVsbCZobD1lbi11cyZnbD1nYiZvY2lkPWJpbmd3ZWJzZWFyY2g%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=c712eb574c26efbfJmltdHM9MTcyNDExMjAwMCZpZ3VpZD0xZDFiZDgyZC1hNzQ3LTY0MjMtMmQ5MS1jY2NjYTY3ZDY1YmUmaW5zaWQ9NTU1MA&ptn=3&ver=2&hsh=3&fclid=1d1bd82d-a747-6423-2d91-cccca67d65be&psq=windows+visual+studio&u=a1aHR0cHM6Ly9hcHBzLm1pY3Jvc29mdC5jb20vZGV0YWlsL1hQRENGSkRLTFpKTFA4P2xhdW5jaD10cnVlJm1vZGU9ZnVsbCZobD1lbi11cyZnbD1nYiZvY2lkPWJpbmd3ZWJzZWFyY2g&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A7A59F578B63451A9FD978E5BBB10415&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1724145559454%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=A7A59F578B63451A9FD978E5BBB10415&ID=SERP,5747.1&url=%2Fsearch%3Fq%3Dvisual%2Bstudio%2Bdownload%26filters%3Ddtbk%3A%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%253d%22%2Bsid%3A%22752323e2-57bd-15b1-a603-3b8667360a80%22%26FORM%3DDEPNAV

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&sid=044E27407A3C6EFA0F8B33A17B066F22&format=snrjson&jsoncbid=0

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A389B43B874A461A98FE0B7A214B01F1&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.AjaxSerpError%22,%22FID%22:%22CI%22,%22Name%22:%22Ajax%22,%22Meta%22:%22RK:SearchForm,Identity,scopebar%20SK:%20U:/search%3Fq%3Dvisual+studio+download%26filters%3Ddtbk%3A%2522MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%253d%2522+sid%3A%2522752323e2-57bd-15b1-a603-3b8667360a80%2522%26FORM%3DDEPNAV%26sid%3D044E27407A3C6EFA0F8B33A17B066F22%26format%3Dsnrjson%26jsoncbid%3D0%22,%22Text%22:%22FailedRequest70%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/search?q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=A389B43B874A461A98FE0B7A214B01F1&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22A%22,%22FC%22:10,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:-1,%22BP%22:-1,%22CT%22:20177,%22IL%22:42},%22ad%22:[-1,-1,1263,592,1263,4085,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:12,%22SE%22:-1,%22TC%22:-1,%22H%22:45,%22BP%22:52,%22CT%22:53,%22IL%22:9},%22ad%22:[-1,-1,1263,592,1263,3818,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145585989%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22200%22%2C%22Downlink%22%3A%221.2%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1724145585989%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1724145585996%2C%22Name%22%3A1081%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585996%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585997%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145585997%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.EnDOdxuXnE61zpljNj-lZAAAAA&w=217&h=104&c=7&bgcl=5b1e0d&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OIP.uDGAiodECFzNp03dfDr6hgAAAA&w=194&h=104&c=7&bgcl=5cca3a&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OIP._jzb5pbqlfzCQMlopKB1bAAAAA&w=193&h=104&c=7&bgcl=1441ee&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.ubNmNIVEBEXhg3FT9fHrVwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.U8Hd96ZtEFj2o1se6FW-7gAAAA&w=131&h=104&c=7&bgcl=4402d2&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.-ZxhtbZ49ql8NNMaRUiqqQHaD6&w=185&h=104&c=7&bgcl=a1ad8c&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.2-zqXI5a8WXOrmDL7uoEiAAAAA&w=147&h=104&c=7&bgcl=73477d&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.qLn2I_LVZ6W1nSinQMwwhwAAAA&w=139&h=104&c=7&bgcl=5a5ae5&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.6b55ac23-7def-44f4-a5a7-84eb4cbc1c19&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.Y-Uv2tsTvjrGDcR3_T-xXgAAAA&w=80&h=80&c=1&vt=10&bgcl=e2da03&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.6b55ac23-7def-44f4-a5a7-84eb4cbc1c19&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.Y-Uv2tsTvjrGDcR3_T-xXgAAAA&w=80&h=80&c=1&vt=10&bgcl=85d177&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.9AQXchgUGb_ycZecnAtsOQHaDt&w=80&h=80&c=1&vt=10&bgcl=4254e8&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.whHZi5Q0EiiQErhkRqpXVQHaFx&w=80&h=80&c=1&vt=10&bgcl=7261d1&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.c6c029e6-0ccb-4ae6-a016-e14f53ed531c&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.dc77094b-28a7-4132-9def-681038c8b9f0&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2222%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=43F7C5C923124739B552B6F0D3522EDA&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=48950276&IID=SERP.5056&IG=43F7C5C923124739B552B6F0D3522EDA

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=43F7C5C923124739B552B6F0D3522EDA&IID=SERP.5065&q=visual+studio+download&filters=dtbk:%22MCFrZ192N19vbmxpbmVfdmVyc2lvbiFjZ192NV9kb3dubG9hZCE3NTIzMjNlMi01N2JkLTE1YjEtYTYwMy0zYjg2NjczNjBhODA%3d%22+sid:%22752323e2-57bd-15b1-a603-3b8667360a80%22&FORM=DEPNAV&ajf=70

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum18%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f18%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=044E27407A3C6EFA0F8B33A17B066F22&clientsid=044E27407A3C6EFA0F8B33A17B066F22

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586004%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586005%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145586011%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2266c45fb1cb5042e7a6b6549553487387%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145587708%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2266c45fb1cb5042e7a6b6549553487387%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1724145587708%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587731%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145587781%2C%22Name%22%3A%22ContainerToggledon%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145587781%2C%22Name%22%3A%22ContainerRender%22%2C%22FID%22%3A%22UnifiedAnswerGutterWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1724145587983%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145587985%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145587985%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/auth/getToken

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22RedemptionAnimationState%22%3A%22%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1724145587987%2C%22Name%22%3A%22AnimationLoad%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.3bXxBheOithd1g-8Gp_gCwEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145587999%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22bingpages%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2212%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1724145588000%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588013%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&Type=Event.PPT&DATA={%22S%22:959,%22E%22:2966,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A4031%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A4035%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1724145588020%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1724145588022%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222028%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1724145588023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%224037%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1724145588023%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1724145588103%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22reason%22%3A%22initialize%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145588163%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22stage%22%3A%22AnidMissing%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1724145588164%2C%22Name%22%3A%22CheckInstall%22%2C%22FID%22%3A%2214eniju4_14j91kk4%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=43F7C5C923124739B552B6F0D3522EDA&TYPE=Event.ClientInst&DATA=%5B%7B%22AnswerType%22%3A%22LeftGutterWidget%22%2C%22T%22%3A%22CI.LeftGutterModule%22%2C%22TS%22%3A1724145591000%2C%22Name%22%3A%22Available%22%2C%22FID%22%3A%22relatedSearchesLGW%22%7D%2C%7B%22Error%22%3A%22JSONP%20call%20resulted%20in%20error.%22%2C%22T%22%3A%22CI.ipv6test%22%2C%22TS%22%3A1724145591537%2C%22Name%22%3A%22IPv6TestError%22%2C%22FID%22%3A%22IPv6Test%20Dom_%20www2%22%7D%5D

HTTP Response

204

HTTP Response

200
95.101.129.210:443

th.bing.com

tls, http2

msedge.exe

1.4kB
1.2kB
11
7
95.101.129.146:443

r.bing.com

tls, http2

msedge.exe

1.1kB
970 B
9
9
95.101.129.146:443

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

tls, http2

msedge.exe

2.8kB
4.4kB
21
21

HTTP Request

GET https://r.bing.com/rp/W6JA1dqYURoDF58Us-rKOCztnvE.br.js

HTTP Request

GET https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

HTTP Response

200

HTTP Response

200
95.101.129.210:443

th.bing.com

tls, http2

msedge.exe

1.2kB
970 B
11
9
13.107.5.80:443

https://services.bingapis.com/favicon/?url=visualstudio.microsoft.com

tls, http2

msedge.exe

2.9kB
2.9kB
15
13

HTTP Request

GET https://services.bingapis.com/favicon/?url=visualstudio.microsoft.com

HTTP Response

200
104.18.33.89:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
104.18.33.89:443

www2.bing.com

tls

msedge.exe

793 B
219 B
6
5
13.107.246.64:443

https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

tls, http2

msedge.exe

29.6kB
547.3kB
388
425

HTTP Request

GET https://apps.microsoft.com/detail/XPDCFJDKLZJLP8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch

HTTP Response

301

HTTP Request

GET https://apps.microsoft.com/detail/xpdcfjdklzjlp8?launch=true&mode=full&hl=en-us&gl=gb&ocid=bingwebsearch

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/assets/js/index-ec1cd41b.js

HTTP Request

GET https://apps.microsoft.com/clarity.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/assets/js/index-d961e0b8.js

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

HTTP Request

GET https://apps.microsoft.com/api/Products/ZeroStateSearch?gl=GB&hl=en-us

HTTP Request

GET https://apps.microsoft.com/assets/js/product-details-ad60d454.js

HTTP Request

GET https://apps.microsoft.com/assets/js/repeat-461b304a.js

HTTP Request

GET https://apps.microsoft.com/assets/js/auto-complete-app-search-caee51e5.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.W3CH77FZ-402eb63b.js

HTTP Request

GET https://apps.microsoft.com/assets/js/style-map-e0938f8f.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.5SKBN5CP-e978556d.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.DBG7W4GS-98d16312.js

HTTP Request

GET https://apps.microsoft.com/assets/js/css-function-b0fa60eb.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.5IDXW3BB-62032bcb.js

HTTP Request

GET https://apps.microsoft.com/assets/js/image-helper-554340db.js

HTTP Request

GET https://apps.microsoft.com/assets/js/prefers-themes-observer-d1f54912.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.WYDJ5QAQ-b4acfa0f.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.LXDTFLWU-e9d178e0.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.F5JVBNK3-59205cd6.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.LHI6QEL2-b2745246.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.BS5AOUMT-ed5e65bb.js

HTTP Request

GET https://apps.microsoft.com/assets/js/spacing.styles-69f11dc0.js

HTTP Request

GET https://apps.microsoft.com/assets/js/video-player-7467d0b6.js

HTTP Request

GET https://apps.microsoft.com/assets/js/paged-list-5d80a6a7.js

HTTP Request

GET https://apps.microsoft.com/assets/js/product-collection-4cc1c6d0.js

HTTP Request

GET https://apps.microsoft.com/assets/js/nav-bar-e8d79a0e.js

HTTP Request

GET https://apps.microsoft.com/assets/js/collection-types-62834e09.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/assets/js/header-9cd4b3b7.js

HTTP Request

GET https://apps.microsoft.com/assets/js/footer-menu-a2119a2b.js

HTTP Request

GET https://apps.microsoft.com/assets/js/chunk.YVAJSRTS-a6bb4b7c.js

HTTP Request

GET https://apps.microsoft.com/assets/js/language-selector-dialog-2991d89d.js

HTTP Request

GET https://apps.microsoft.com/api/ProductsDetails/GetPromoProductDetailsById/xpdcfjdklzjlp8?gl=GB&hl=en-us

HTTP Request

GET https://apps.microsoft.com/assets/js/system-requirements-a43aa69e.js

HTTP Request

GET https://apps.microsoft.com/assets/js/index-d0ec2dcd.css

HTTP Request

GET https://apps.microsoft.com/assets/js/alert-service-5e142f4d.js

HTTP Request

GET https://apps.microsoft.com/assets/js/additional-info-c639abf9.js

HTTP Request

GET https://apps.microsoft.com/assets/icons/arrow-up-short.svg

HTTP Request

GET https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

HTTP Request

GET https://apps.microsoft.com/api/Reco/GetRelatedProductsList/xpdcfjdklzjlp8?gl=GB&hl=en-us&noItems=30&pgNo=1&productType=Application&filteredCategories=

HTTP Request

GET https://apps.microsoft.com/assets/icons/chevron-left.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/chevron-right.svg

HTTP Request

GET https://apps.microsoft.com/assets/js/applicationinsights-web-9ad09b9c.js

HTTP Request

GET https://apps.microsoft.com/assets/js/InstrumentHooks-cd565348.js

HTTP Request

GET https://apps.microsoft.com/assets/js/applicationinsights-core-js-9783d46c.js

HTTP Request

GET https://apps.microsoft.com/assets/js/Index-cbed7ffc.js

HTTP Request

GET https://apps.microsoft.com/assets/js/color-worker-bb651d13.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/assets/icons/search.svg

HTTP Request

GET https://apps.microsoft.com/assets/js/auth-control-7ace791a.js

HTTP Request

GET https://apps.microsoft.com/assets/icons/microsoft-logo-dark-1.png

HTTP Request

GET https://apps.microsoft.com/assets/icons/microsoft-logo-dark-2.png

HTTP Request

GET https://apps.microsoft.com/assets/icons/light-logo-32x32.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/assets/icons/box-seam.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/bookmark.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/shield.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/chat-text.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/card-text.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/flag.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/exclamation-triangle.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/aspect-ratio.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/info-circle.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/assets/icons/x-header-light.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/privacyoptions.svg

HTTP Request

GET https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

HTTP Request

GET https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=
13.107.246.64:443

apps.microsoft.com

tls, http2

msedge.exe

2.3kB
6.8kB
18
16
2.18.108.7:443

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKf2UuDfUP91WO2uYNo358fUuEg4J8DSHlBmgw0NXnXpkaHoHurZ4Z8XZ_Qn_whaLEs-&h=253

tls, http

msedge.exe

8.9kB
62.1kB
52
57

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKem_JgrRr7gS_Bn7fCpUYVwcAEB_z.pvbXh248WIR6l2f2RpLkepH7aQ1Mjpmvv.0g-&h=210

HTTP Response

200

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKf2UuDfUP91WO2uYNo358fUuEg4J8DSHlBmgw0NXnXpkaHoHurZ4Z8XZ_Qn_whaLEs-&h=253

HTTP Response

200
2.18.108.7:443

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeNqf6daEbxLYwKJ._I1u3gGX6lGW_l6RO_g_YMJA6JTkqojzMrA9aMgIx75CltN48-&h=253

tls, http

msedge.exe

8.1kB
41.3kB
38
41

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKfE9DsKvMyNlXcrGNhjyVdZVDnlLtjhiH3XudrX9fWg5nNgvv79ZqX1qx9y7dQ0d_Y-&format=source&h=210

HTTP Response

200

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeNqf6daEbxLYwKJ._I1u3gGX6lGW_l6RO_g_YMJA6JTkqojzMrA9aMgIx75CltN48-&h=253

HTTP Response

200
152.199.19.161:443

sparkcdneus2.azureedge.net

tls, http2

msedge.exe

2.8kB
7.9kB
16
16
2.18.108.7:443

musicart.xboxlive.com

tls

msedge.exe

1.1kB
4.8kB
11
9
2.18.109.103:443

store-images.microsoft.com

tls

msedge.exe

1.1kB
4.9kB
10
10
13.107.246.67:443

https://www.clarity.ms/s/0.7.44/clarity-extended.js

tls, http2

msedge.exe

3.1kB
35.3kB
32
42

HTTP Request

GET https://www.clarity.ms/tag/inyago70pn

HTTP Response

200

HTTP Request

GET https://www.clarity.ms/s/0.7.44/clarity-extended.js

HTTP Response

200
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

5.3kB
6.4kB
15
12

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

5.5kB
8.0kB
18
13

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
51.8.64.151:443

h.clarity.ms

tls

msedge.exe

2.2kB
7.2kB
15
11
2.18.108.7:443

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKem_JgrRr7gS_Bn7fCpUYVwcAEB_z.pvbXh248WIR6l2f2RpLkepH7aQ1Mjpmvv.0g-&h=720

tls, http

msedge.exe

7.4kB
177.9kB
119
141

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKem_JgrRr7gS_Bn7fCpUYVwcAEB_z.pvbXh248WIR6l2f2RpLkepH7aQ1Mjpmvv.0g-&h=720

HTTP Response

200
2.18.108.7:443

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxnuwhvZJBcOoTALhdIGiPXS1OOSTyB4LiKHoZz1ST0iymmPJkVNjR4mRtoAuG4bAsV6HZnLBwea.w9eczsTfIwA-&format=source&w=75

tls, http

msedge.exe

8.3kB
53.1kB
47
53

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeLe10Sw3vOA598ssDY5_.hv5ZuDCpUU6p9.Xcdz4Q0dchs.xJec1MA1YDeWdW6kAs-&h=253

HTTP Response

200

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKeNPChbnDnXrlACAc81O9_lFLT_xI.60XNdWFU8gE9kLkCWHCyVXRpjxMYclkeGuxE-&h=253

HTTP Response

200

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxnuwhvZJBcOoTALhdIGiPXS1OOSTyB4LiKHoZz1ST0iymmPJkVNjR4mRtoAuG4bAsV6HZnLBwea.w9eczsTfIwA-&format=source&w=75

HTTP Response

200
2.18.108.7:443

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKcXf2iLt0PBWV.9HTYPdwbSnbcGYe9xt1F8DqZsuzKYFL67QlrDlh5vlXbFj6uHB88-&h=253

tls, http

msedge.exe

7.4kB
59.4kB
46
57

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKc57RywBKPl.JGKr0w4ljSoCypuYnJjXUAlxpqpc_PbEgaadlchTdmwhUsoi3vaQ.I-&h=253

HTTP Response

200

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKcXf2iLt0PBWV.9HTYPdwbSnbcGYe9xt1F8DqZsuzKYFL67QlrDlh5vlXbFj6uHB88-&h=253

HTTP Response

200
2.18.108.7:443

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKd92kqFkTnE1VWZuEaDfLiWSLBzdbyHr0QTcJa9ToIQKLfHDd1bZFWcafDG0Erkbxo-&h=253

tls, http

msedge.exe

5.0kB
60.4kB
41
57

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKdzlH7coKJ2ZMtC8KifmQLgDyb7ZVvHo4iB1.QQBbvXgt7LDsL7evhezu0GHNrV7Dg-&h=253

HTTP Response

200

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKd92kqFkTnE1VWZuEaDfLiWSLBzdbyHr0QTcJa9ToIQKLfHDd1bZFWcafDG0Erkbxo-&h=253

HTTP Response

200
2.18.108.7:443

https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKe5u6tT8oNwZIPoM.MyNTSTnJJpNXEE3AZlsQFbbu6DMHFW3TJd7ttb5jjxHNI940Y-&h=253

tls, http

msedge.exe

3.0kB
29.8kB
31
34

HTTP Request

GET https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxr4dH.og8l0VK7ZT_RROCKe5u6tT8oNwZIPoM.MyNTSTnJJpNXEE3AZlsQFbbu6DMHFW3TJd7ttb5jjxHNI940Y-&h=253

HTTP Response

200
2.18.108.7:443

images-eds-ssl.xboxlive.com

tls

msedge.exe

2.0kB
981 B
13
9
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

6.3kB
6.8kB
19
15

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
13.107.246.64:443

apps.microsoft.com

msedge.exe

52 B
1
13.107.246.64:443

apps.microsoft.com

tls

msedge.exe

1.5kB
6.2kB
11
9
13.107.246.64:443

apps.microsoft.com

tls

msedge.exe

839 B
311 B
7
5
13.107.246.64:443

https://apps.microsoft.com/assets/icons/person-loggedout-dark.svg

tls, http2

msedge.exe

6.5kB
43.6kB
66
50

HTTP Request

GET https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

HTTP Request

GET https://apps.microsoft.com/assets/icons/card-text.svg

HTTP Request

GET https://apps.microsoft.com/assets/js/color-worker-bb651d13.js

HTTP Request

GET https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

HTTP Request

GET https://apps.microsoft.com/assets/icons/box-seam.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/microsoft-logo-dark-1.png

HTTP Request

GET https://apps.microsoft.com/api/settings/flags?gl=GB&hl=en-us&sessionId=

HTTP Request

GET https://apps.microsoft.com/assets/icons/flag.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/chat-text.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/shield.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/bookmark.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/search.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/light-logo-32x32.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/aspect-ratio.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/exclamation-triangle.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/info-circle.svg

HTTP Request

GET https://apps.microsoft.com/assets/js/auth-control-7ace791a.js

HTTP Request

GET https://apps.microsoft.com/assets/icons/microsoft-logo-dark-2.png

HTTP Request

GET https://apps.microsoft.com/assets/icons/x-header-light.svg

HTTP Request

GET https://apps.microsoft.com/assets/icons/privacyoptions.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://apps.microsoft.com/assets/icons/person-loggedout-dark.svg

HTTP Response

200
13.107.246.64:443

apps.microsoft.com

tls

msedge.exe

839 B
311 B
7
5
13.107.246.64:443

apps.microsoft.com

tls

msedge.exe

1.5kB
6.2kB
11
9
13.107.246.64:443

https://apps.microsoft.com/manifest.webmanifest

tls, http2

msedge.exe

3.5kB
9.7kB
19
20

HTTP Request

GET https://apps.microsoft.com/manifest.webmanifest

HTTP Response

200
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

2.0kB
6.4kB
12
13

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
51.8.64.151:443

h.clarity.ms

tls

msedge.exe

1.1kB
6.0kB
10
11
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

3.9kB
7.7kB
14
15

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://h.clarity.ms/collect
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

2.1kB
6.4kB
14
13

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

3.1kB
6.8kB
14
14

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
95.101.129.233:443

r.bing.com

tls, http2

msedge.exe

1.1kB
930 B
9
8
95.101.129.232:443

th.bing.com

tls, http2

msedge.exe

1.1kB
986 B
9
9
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
172.64.154.167:443

www2.bing.com

tls

msedge.exe

747 B
219 B
5
5
74.125.153.201:443

https://rr4---sn-4g5edn6r.googlevideo.com/generate_204

tls, http

msedge.exe

1.7kB
5.8kB
12
11

HTTP Request

GET https://rr4---sn-4g5edn6r.googlevideo.com/generate_204

HTTP Response

204
51.8.64.151:443

h.clarity.ms

tls

msedge.exe

1.2kB
6.0kB
13
11
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

2.0kB
6.5kB
13
14

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

3.1kB
8.0kB
18
16

HTTP Request

POST https://h.clarity.ms/collect
52.109.76.243:443

https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

tls, http

WINWORD.EXE

1.7kB
7.7kB
11
10

HTTP Request

POST https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

HTTP Response

200
51.8.64.151:443

https://h.clarity.ms/collect

tls, http

msedge.exe

1.9kB
6.4kB
12
13

HTTP Request

POST https://h.clarity.ms/collect

HTTP Response

204
23.40.43.123:443

https://metadata.templates.cdn.office.net/client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C

tls, http

WINWORD.EXE

1.3kB
5.9kB
9
9

HTTP Request

GET https://metadata.templates.cdn.office.net/client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851216.cab

tls, http

WINWORD.EXE

1.7kB
40.8kB
21
34

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851216.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02835233.cab

tls, http

WINWORD.EXE

1.9kB
52.8kB
25
42

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02835233.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851219.cab

tls, http

WINWORD.EXE

1.6kB
37.5kB
19
31

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851219.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851218.cab

tls, http

WINWORD.EXE

1.6kB
37.7kB
19
31

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851218.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851217.cab

tls, http

WINWORD.EXE

1.7kB
39.6kB
20
34

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851217.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851220.cab

tls, http

WINWORD.EXE

1.6kB
37.4kB
19
31

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851220.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851221.cab

tls, http

WINWORD.EXE

1.6kB
37.5kB
19
32

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851221.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851222.cab

tls, http

WINWORD.EXE

1.6kB
34.7kB
18
29

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851222.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851227.cab

tls, http

WINWORD.EXE

1.6kB
37.3kB
19
31

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851227.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851223.cab

tls, http

WINWORD.EXE

1.7kB
38.8kB
20
32

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851223.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851226.cab

tls, http

WINWORD.EXE

1.7kB
41.5kB
21
34

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851226.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851225.cab

tls, http

WINWORD.EXE

1.6kB
36.9kB
19
31

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851225.cab

HTTP Response

200
173.222.211.57:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851224.cab

tls, http

WINWORD.EXE

1.6kB
36.8kB
19
31

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851224.cab

HTTP Response

200
104.117.183.96:443

https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724145885521

tls, http2

msedge.exe

27.0kB
3.9kB
40
40

HTTP Request

POST https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724145768151

HTTP Response

200

HTTP Request

POST https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724145778348

HTTP Response

200

HTTP Request

POST https://backstory.ebay.com.au/customer/v1/customer_service?ct=1724145885521

HTTP Response

200
143.204.176.23:443

https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

tls, http2

msedge.exe

3.3kB
2.4kB
18
21

HTTP Request

OPTIONS https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

HTTP Response

200

HTTP Request

GET https://sr-client-cfg.amplitude.com/config?api_key=f93443b04ccea262b9a9db150b066115&config_keys=sessionReplay

HTTP Response

200
2.18.109.11:443

https://rover.ebay.com.au/roverclk/0/0/9?trknvp=sid%3Dp4375194.m1382.l6435%26ts%3D1724145769397

tls, http2

msedge.exe

3.7kB
8.2kB
20
23

HTTP Request

GET https://rover.ebay.com.au/roverclk/0/0/9?trknvp=sid%3Dp4375194.m1382.l6435%26ts%3D1724145769397

HTTP Response

200
2.18.109.98:443

https://www.ebay.com.au/gdpr/submitGDPRData?srt=01000900000050513c91813c9eb749ebc254a742ab88236dbd982698c98b3ad891ed02956598bde351f2199042009dafd3e02e806d186c9ecab47d14a8e51c56f7c06dde7ba4706f88bf63d6e20433e0e740bb40ac63e7&correlation=si%3D6f08dc9c1910acf39cc05acaffff2dfa%2Cc%3D1%2CoperationId%3D4375194%2Ctrk-gflgs%3DQA**&v=2

tls, http2

msedge.exe

6.0kB
8.2kB
21
26

HTTP Request

POST https://www.ebay.com.au/gdpr/ac/getToken?v=2

HTTP Response

200

HTTP Request

POST https://www.ebay.com.au/gdpr/submitGDPRData?srt=01000900000050513c91813c9eb749ebc254a742ab88236dbd982698c98b3ad891ed02956598bde351f2199042009dafd3e02e806d186c9ecab47d14a8e51c56f7c06dde7ba4706f88bf63d6e20433e0e740bb40ac63e7&correlation=si%3D6f08dc9c1910acf39cc05acaffff2dfa%2Cc%3D1%2CoperationId%3D4375194%2Ctrk-gflgs%3DQA**&v=2

HTTP Response

200
157.240.17.35:443

www.facebook.com

tls

msedge.exe

4.7kB
3.8kB
16
17

8.8.8.8:53

clickthis.photo

dns

msedge.exe

61 B
77 B
1
1

DNS Request

clickthis.photo

DNS Response

52.173.151.229
8.8.8.8:53

8.8.8.8.in-addr.arpa

dns

66 B
90 B
1
1

DNS Request

8.8.8.8.in-addr.arpa
8.8.8.8:53

196.249.167.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

196.249.167.52.in-addr.arpa
8.8.8.8:53

134.32.126.40.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

134.32.126.40.in-addr.arpa
8.8.8.8:53

229.151.173.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

229.151.173.52.in-addr.arpa
8.8.8.8:53

172.214.232.199.in-addr.arpa

dns

74 B
128 B
1
1

DNS Request

172.214.232.199.in-addr.arpa
8.8.8.8:53

grabify.world

dns

msedge.exe

59 B
91 B
1
1

DNS Request

grabify.world

DNS Response

104.21.15.56

172.67.161.186
8.8.8.8:53

grabify.link

dns

msedge.exe

58 B
106 B
1
1

DNS Request

grabify.link

DNS Response

172.67.68.246

104.26.8.202

104.26.9.202
8.8.8.8:53

56.15.21.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

56.15.21.104.in-addr.arpa
8.8.8.8:53

static.cloudflareinsights.com

dns

msedge.exe

75 B
107 B
1
1

DNS Request

static.cloudflareinsights.com

DNS Response

104.16.79.73

104.16.80.73
8.8.8.8:53

246.68.67.172.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

246.68.67.172.in-addr.arpa
8.8.8.8:53

57.169.31.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

57.169.31.20.in-addr.arpa
8.8.8.8:53

73.79.16.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

73.79.16.104.in-addr.arpa
224.0.0.251:5353

2.0kB
20
8.8.8.8:53

googleads.g.doubleclick.net

dns

msedge.exe

73 B
89 B
1
1

DNS Request

googleads.g.doubleclick.net

DNS Response

142.250.179.98
8.8.8.8:53

226.75.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

226.75.250.142.in-addr.arpa
8.8.8.8:53

ebay.com.au

dns

msedge.exe

57 B
89 B
1
1

DNS Request

ebay.com.au

DNS Response

2.21.67.41

2.21.67.51
8.8.8.8:53

98.179.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

98.179.250.142.in-addr.arpa
8.8.8.8:53

41.67.21.2.in-addr.arpa

dns

69 B
131 B
1
1

DNS Request

41.67.21.2.in-addr.arpa
8.8.8.8:53

233.38.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

233.38.18.104.in-addr.arpa
8.8.8.8:53

www.ebay.com.au

dns

msedge.exe

61 B
160 B
1
1

DNS Request

www.ebay.com.au

DNS Response

184.26.133.191
8.8.8.8:53

srv.au.ebayrtm.com

dns

msedge.exe

64 B
168 B
1
1

DNS Request

srv.au.ebayrtm.com

DNS Response

66.211.166.8

209.140.129.85

66.211.163.8
8.8.8.8:53

i.ebayimg.com

dns

msedge.exe

59 B
188 B
1
1

DNS Request

i.ebayimg.com

DNS Response

184.26.133.88
8.8.8.8:53

ir.ebaystatic.com

dns

msedge.exe

63 B
142 B
1
1

DNS Request

ir.ebaystatic.com

DNS Response

93.184.223.214
8.8.8.8:53

rover.ebay.com

dns

msedge.exe

60 B
145 B
1
1

DNS Request

rover.ebay.com

DNS Response

209.140.135.138

66.211.163.23
8.8.8.8:53

secureir.ebaystatic.com

dns

msedge.exe

69 B
161 B
1
1

DNS Request

secureir.ebaystatic.com

DNS Response

184.26.133.88
8.8.8.8:53

191.133.26.184.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

191.133.26.184.in-addr.arpa
8.8.8.8:53

214.223.184.93.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

214.223.184.93.in-addr.arpa
8.8.8.8:53

88.133.26.184.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

88.133.26.184.in-addr.arpa
8.8.8.8:53

8.166.211.66.in-addr.arpa

dns

71 B
147 B
1
1

DNS Request

8.166.211.66.in-addr.arpa
8.8.8.8:53

rover.ebay.com.au

dns

msedge.exe

63 B
155 B
1
1

DNS Request

rover.ebay.com.au

DNS Response

184.26.133.88
8.8.8.8:53

pages.ebay.com

dns

msedge.exe

60 B
154 B
1
1

DNS Request

pages.ebay.com

DNS Response

184.26.133.191
8.8.8.8:53

www.ebayadservices.com

dns

msedge.exe

68 B
127 B
1
1

DNS Request

www.ebayadservices.com

DNS Response

66.211.162.160

66.211.162.160
8.8.8.8:53

devicebind.ebay.com.au

dns

msedge.exe

68 B
115 B
1
1

DNS Request

devicebind.ebay.com.au

DNS Response

209.140.129.87
8.8.8.8:53

mkttag.ebay.com

dns

msedge.exe

61 B
155 B
1
1

DNS Request

mkttag.ebay.com

DNS Response

184.26.133.191
8.8.8.8:53

backstory.ebay.com.au

dns

msedge.exe

140 B
434 B
2
2

DNS Request

backstory.ebay.com.au

DNS Response

104.117.183.107

104.117.183.98

104.117.183.80

104.117.183.106

104.117.183.81

104.117.183.89

104.117.183.99

104.117.183.114

104.117.183.75

DNS Request

234.75.250.142.in-addr.arpa
8.8.8.8:53

sr-client-cfg.amplitude.com

dns

msedge.exe

146 B
276 B
2
2

DNS Request

sr-client-cfg.amplitude.com

DNS Response

143.204.176.49

143.204.176.53

143.204.176.61

143.204.176.23

DNS Request

57.211.222.173.in-addr.arpa
8.8.8.8:53

dynamic.criteo.com

dns

msedge.exe

64 B
115 B
1
1

DNS Request

dynamic.criteo.com

DNS Response

178.250.1.13
8.8.8.8:53

sp.analytics.yahoo.com

dns

msedge.exe

68 B
147 B
1
1

DNS Request

sp.analytics.yahoo.com

DNS Response

3.255.41.64

34.252.40.201
8.8.8.8:53

connect.facebook.net

dns

msedge.exe

66 B
114 B
1
1

DNS Request

connect.facebook.net

DNS Response

157.240.17.15
8.8.8.8:53

s.pinimg.com

dns

msedge.exe

58 B
226 B
1
1

DNS Request

s.pinimg.com

DNS Response

184.26.132.239
8.8.8.8:53

160.162.211.66.in-addr.arpa

dns

73 B
145 B
1
1

DNS Request

160.162.211.66.in-addr.arpa
8.8.8.8:53

87.129.140.209.in-addr.arpa

dns

73 B
145 B
1
1

DNS Request

87.129.140.209.in-addr.arpa
8.8.8.8:53

107.183.117.104.in-addr.arpa

dns

74 B
141 B
1
1

DNS Request

107.183.117.104.in-addr.arpa
8.8.8.8:53

49.176.204.143.in-addr.arpa

dns

73 B
131 B
1
1

DNS Request

49.176.204.143.in-addr.arpa
8.8.8.8:53

gum.criteo.com

dns

msedge.exe

60 B
107 B
1
1

DNS Request

gum.criteo.com

DNS Response

178.250.1.11
8.8.8.8:53

ct.pinterest.com

dns

msedge.exe

62 B
250 B
1
1

DNS Request

ct.pinterest.com

DNS Response

184.26.132.239
8.8.8.8:53

www.google.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

www.google.com

DNS Response

172.217.20.196
8.8.8.8:53

13341218.fls.doubleclick.net

dns

msedge.exe

74 B
111 B
1
1

DNS Request

13341218.fls.doubleclick.net

DNS Response

142.250.179.102
8.8.8.8:53

ag.gbc.criteo.com

dns

msedge.exe

63 B
537 B
1
1

DNS Request

ag.gbc.criteo.com

DNS Response

185.235.86.9

185.235.86.24

185.235.86.14

185.235.86.0

185.235.86.2

185.235.86.19

185.235.86.13

185.235.86.5

185.235.86.15

185.235.86.18

185.235.86.25

185.235.86.6

185.235.86.3

185.235.86.20

185.235.86.27

185.235.86.26

185.235.86.11

185.235.86.16

185.235.86.7

185.235.86.17

185.235.86.8

185.235.86.12

185.235.86.4

185.235.86.21

185.235.86.1

185.235.86.10

185.235.86.23

185.235.86.22
8.8.8.8:53

gem.gbc.criteo.com

dns

msedge.exe

64 B
538 B
1
1

DNS Request

gem.gbc.criteo.com

DNS Response

185.235.87.223

185.235.87.222

185.235.87.198

185.235.87.202

185.235.87.219

185.235.87.220

185.235.87.204

185.235.87.206

185.235.87.209

185.235.87.212

185.235.87.210

185.235.87.216

185.235.87.207

185.235.87.208

185.235.87.200

185.235.87.221

185.235.87.205

185.235.87.201

185.235.87.197

185.235.87.211

185.235.87.213

185.235.87.215

185.235.87.196

185.235.87.199

185.235.87.217

185.235.87.214

185.235.87.218

185.235.87.203
8.8.8.8:53

dnacdn.net

dns

msedge.exe

56 B
72 B
1
1

DNS Request

dnacdn.net

DNS Response

178.250.7.13
8.8.8.8:53

www.facebook.com

dns

msedge.exe

62 B
107 B
1
1

DNS Request

www.facebook.com

DNS Response

157.240.196.35
142.250.179.98:443

googleads.g.doubleclick.net

https

msedge.exe

4.6kB
8.4kB
12
12
142.250.179.102:443

13341218.fls.doubleclick.net

https

msedge.exe

4.0kB
7.5kB
8
10
8.8.8.8:53

13.1.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

13.1.250.178.in-addr.arpa
8.8.8.8:53

6.39.156.108.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

6.39.156.108.in-addr.arpa
8.8.8.8:53

239.132.26.184.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

239.132.26.184.in-addr.arpa
8.8.8.8:53

64.41.255.3.in-addr.arpa

dns

70 B
131 B
1
1

DNS Request

64.41.255.3.in-addr.arpa
8.8.8.8:53

168.214.58.216.in-addr.arpa

dns

73 B
171 B
1
1

DNS Request

168.214.58.216.in-addr.arpa
8.8.8.8:53

15.17.240.157.in-addr.arpa

dns

72 B
116 B
1
1

DNS Request

15.17.240.157.in-addr.arpa
8.8.8.8:53

11.1.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

11.1.250.178.in-addr.arpa
8.8.8.8:53

102.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

102.179.250.142.in-addr.arpa
8.8.8.8:53

196.20.217.172.in-addr.arpa

dns

73 B
171 B
1
1

DNS Request

196.20.217.172.in-addr.arpa
8.8.8.8:53

13.7.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

13.7.250.178.in-addr.arpa
8.8.8.8:53

35.196.240.157.in-addr.arpa

dns

132 B
262 B
2
2

DNS Request

35.196.240.157.in-addr.arpa

DNS Request

www2.bing.com

DNS Response

172.64.154.167

104.18.33.89
8.8.8.8:53

226.74.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

226.74.250.142.in-addr.arpa
8.8.8.8:53

104.219.191.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

104.219.191.52.in-addr.arpa
8.8.8.8:53

232.168.11.51.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

232.168.11.51.in-addr.arpa
8.8.8.8:53

sslwidget.criteo.com

dns

msedge.exe

66 B
116 B
1
1

DNS Request

sslwidget.criteo.com

DNS Response

178.250.7.11
8.8.8.8:53

widget.us.criteo.com

dns

msedge.exe

66 B
116 B
1
1

DNS Request

widget.us.criteo.com

DNS Response

74.119.117.16
8.8.8.8:53

16.117.119.74.in-addr.arpa

dns

72 B
126 B
1
1

DNS Request

16.117.119.74.in-addr.arpa
8.8.8.8:53

11.7.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

11.7.250.178.in-addr.arpa
8.8.8.8:53

157.123.68.40.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

157.123.68.40.in-addr.arpa
8.8.8.8:53

171.39.242.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

171.39.242.20.in-addr.arpa
8.8.8.8:53

csm.nl3.eu.criteo.net

dns

msedge.exe

67 B
114 B
1
1

DNS Request

csm.nl3.eu.criteo.net

DNS Response

178.250.1.25
8.8.8.8:53

25.1.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

25.1.250.178.in-addr.arpa
8.8.8.8:53

194.129.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

194.129.101.95.in-addr.arpa
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
316 B
1
1

DNS Request

r.bing.com

DNS Response

95.101.129.210

95.101.129.218

95.101.129.203

95.101.129.209

95.101.129.219

95.101.129.208

95.101.129.224

95.101.129.226

95.101.129.202
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

95.101.129.234

95.101.129.194

95.101.129.146

95.101.129.147

95.101.129.235

95.101.129.233

95.101.129.232

95.101.129.200

95.101.129.195
8.8.8.8:53

234.129.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

234.129.101.95.in-addr.arpa
8.8.8.8:53

210.129.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

210.129.101.95.in-addr.arpa
8.8.8.8:53

login.microsoftonline.com

dns

msedge.exe

71 B
306 B
1
1

DNS Request

login.microsoftonline.com

DNS Response

20.190.177.84

20.190.177.147

20.190.177.149

20.190.177.23

20.190.177.146

20.190.177.83

20.190.177.148

20.190.177.20
8.8.8.8:53

84.177.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

84.177.190.20.in-addr.arpa
8.8.8.8:53

76.32.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

76.32.126.40.in-addr.arpa
8.8.8.8:53

github.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

avatars.githubusercontent.com

dns

msedge.exe

75 B
139 B
1
1

DNS Request

avatars.githubusercontent.com

DNS Response

185.199.109.133

185.199.110.133

185.199.108.133

185.199.111.133
8.8.8.8:53

github.githubassets.com

dns

msedge.exe

69 B
133 B
1
1

DNS Request

github.githubassets.com

DNS Response

185.199.110.154

185.199.109.154

185.199.108.154

185.199.111.154
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

75 B
253 B
1
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

16.182.41.169

54.231.193.145

52.216.37.113

16.182.106.185

54.231.204.105

52.217.120.201

52.216.107.228

3.5.21.122
8.8.8.8:53

user-images.githubusercontent.com

dns

msedge.exe

79 B
143 B
1
1

DNS Request

user-images.githubusercontent.com

DNS Response

185.199.111.133

185.199.109.133

185.199.110.133

185.199.108.133
8.8.8.8:53

215.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

215.156.26.20.in-addr.arpa
8.8.8.8:53

81.144.22.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

81.144.22.2.in-addr.arpa
8.8.8.8:53

167.154.64.172.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

167.154.64.172.in-addr.arpa
8.8.8.8:53

154.110.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

154.110.199.185.in-addr.arpa
8.8.8.8:53

133.109.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.109.199.185.in-addr.arpa
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

21.114.82.140.in-addr.arpa

dns

72 B
117 B
1
1

DNS Request

21.114.82.140.in-addr.arpa
8.8.8.8:53

210.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

210.156.26.20.in-addr.arpa
8.8.8.8:53

codeload.github.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

codeload.github.com

DNS Response

20.26.156.216
8.8.8.8:53

pulsar.ebay.com.au

dns

msedge.exe

64 B
281 B
1
1

DNS Request

pulsar.ebay.com.au

DNS Response

104.117.183.114

104.117.183.24

104.117.183.120

104.117.183.115

104.117.183.40

104.117.183.72

104.117.183.33
8.8.8.8:53

114.183.117.104.in-addr.arpa

dns

74 B
141 B
1
1

DNS Request

114.183.117.104.in-addr.arpa
8.8.8.8:53

216.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

216.156.26.20.in-addr.arpa
8.8.8.8:53

21.236.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

21.236.111.52.in-addr.arpa
8.8.8.8:53

tse1.mm.bing.net

dns

62 B
170 B
1
1

DNS Request

tse1.mm.bing.net

DNS Response

150.171.27.10

150.171.28.10
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

65 B
174 B
1
1

DNS Request

aefd.nelreports.net

DNS Response

173.222.211.40

173.222.211.41
173.222.211.40:443

aefd.nelreports.net

https

msedge.exe

5.3kB
5.6kB
13
14
8.8.8.8:53

40.211.222.173.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

40.211.222.173.in-addr.arpa
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

github.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

225 B
253 B
3
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Request

github-cloud.s3.amazonaws.com

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.202.201

3.5.28.42

52.216.62.217

3.5.30.24

52.216.43.185

3.5.22.0

3.5.22.90

16.182.72.33
173.222.211.40:443

aefd.nelreports.net

https

msedge.exe

3.3kB
5.0kB
8
11
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

95.101.129.194

95.101.129.202

95.101.129.209

95.101.129.210

95.101.129.208

95.101.129.200

95.101.129.201

95.101.129.234

95.101.129.235
8.8.8.8:53

r.bing.com

dns

msedge.exe

112 B
632 B
2
2

DNS Request

r.bing.com

DNS Request

r.bing.com

DNS Response

95.101.129.200

95.101.129.226

95.101.129.209

95.101.129.218

95.101.129.233

95.101.129.201

95.101.129.208

95.101.129.210

95.101.129.224

DNS Response

95.101.129.200

95.101.129.210

95.101.129.201

95.101.129.209

95.101.129.235

95.101.129.218

95.101.129.194

95.101.129.202

95.101.129.208
8.8.8.8:53

200.129.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

200.129.101.95.in-addr.arpa
8.8.8.8:53

www.youtube.com

dns

msedge.exe

61 B
271 B
1
1

DNS Request

www.youtube.com

DNS Response

216.58.214.174

172.217.20.206

216.58.215.46

172.217.18.206

142.250.75.238

142.250.178.142

142.250.179.110

142.250.201.174

172.217.20.174

142.250.179.78

216.58.213.78
216.58.214.174:443

www.youtube.com

https

msedge.exe

144.7kB
4.7MB
727
3724
8.8.8.8:53

i.ytimg.com

dns

msedge.exe

57 B
233 B
1
1

DNS Request

i.ytimg.com

DNS Response

172.217.20.214

142.250.201.182

216.58.214.86

142.250.75.246

142.250.178.150

142.250.179.118

216.58.213.86

172.217.20.182

142.250.74.246

216.58.214.182

142.250.179.86
8.8.8.8:53

174.214.58.216.in-addr.arpa

dns

73 B
173 B
1
1

DNS Request

174.214.58.216.in-addr.arpa
8.8.8.8:53

214.20.217.172.in-addr.arpa

dns

73 B
173 B
1
1

DNS Request

214.20.217.172.in-addr.arpa
8.8.8.8:53

accounts.google.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.102.84
142.250.102.84:443

accounts.google.com

https

msedge.exe

4.8kB
16.2kB
27
31
8.8.8.8:53

67.179.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

67.179.250.142.in-addr.arpa
8.8.8.8:53

84.102.250.142.in-addr.arpa

dns

73 B
106 B
1
1

DNS Request

84.102.250.142.in-addr.arpa
8.8.8.8:53

www.google.com

dns

msedge.exe

120 B
152 B
2
2

DNS Request

www.google.com

DNS Response

172.217.20.196

DNS Request

www.google.com

DNS Response

172.217.20.196
172.217.20.196:443

www.google.com

https

msedge.exe

3.1kB
30.9kB
21
26
8.8.8.8:53

play.google.com

dns

msedge.exe

134 B
166 B
2
2

DNS Request

play.google.com

DNS Response

142.250.201.174

DNS Request

ep2.adtrafficquality.google

DNS Response

216.58.215.33
142.250.201.174:443

play.google.com

https

msedge.exe

13.5kB
12.0kB
36
38
8.8.8.8:53

67.214.58.216.in-addr.arpa

dns

72 B
169 B
1
1

DNS Request

67.214.58.216.in-addr.arpa
8.8.8.8:53

174.201.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

174.201.250.142.in-addr.arpa
8.8.8.8:53

jnn-pa.googleapis.com

dns

msedge.exe

67 B
243 B
1
1

DNS Request

jnn-pa.googleapis.com

DNS Response

142.250.201.170

216.58.215.42

172.217.20.202

216.58.214.170

172.217.18.202

142.250.178.138

142.250.179.106

172.217.20.170

142.250.179.74

142.250.75.234

216.58.213.74
142.250.201.170:443

jnn-pa.googleapis.com

https

msedge.exe

11.0kB
142.6kB
66
123
8.8.8.8:53

170.201.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

170.201.250.142.in-addr.arpa
8.8.8.8:53

youtube.com

dns

msedge.exe

57 B
73 B
1
1

DNS Request

youtube.com

DNS Response

142.250.74.238
8.8.8.8:53

238.74.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

238.74.250.142.in-addr.arpa
8.8.8.8:53

consent.youtube.com

dns

msedge.exe

130 B
81 B
2
1

DNS Request

consent.youtube.com

DNS Request

consent.youtube.com

DNS Response

172.217.18.206
8.8.8.8:53

206.18.217.172.in-addr.arpa

dns

146 B
286 B
2
2

DNS Request

206.18.217.172.in-addr.arpa

DNS Request

206.18.217.172.in-addr.arpa
172.217.20.214:443

i.ytimg.com

https

msedge.exe

10.8kB
540.4kB
114
419
142.250.179.98:443

googleads.g.doubleclick.net

https

msedge.exe

3.4kB
8.9kB
23
25
8.8.8.8:53

static.doubleclick.net

dns

msedge.exe

68 B
84 B
1
1

DNS Request

static.doubleclick.net

DNS Response

142.250.74.230
8.8.8.8:53

230.74.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

230.74.250.142.in-addr.arpa
142.250.74.238:443

youtube.com

https

msedge.exe

3.7kB
8.2kB
9
11
8.8.8.8:53

suggestqueries-clients6.youtube.com

dns

msedge.exe

81 B
97 B
1
1

DNS Request

suggestqueries-clients6.youtube.com

DNS Response

142.250.201.174
142.250.201.174:443

suggestqueries-clients6.youtube.com

https

msedge.exe

10.9kB
32.8kB
47
46
172.217.20.196:443

www.google.com

https

msedge.exe

6.9kB
5.5kB
11
10
8.8.8.8:53

yt3.ggpht.com

dns

msedge.exe

177 B
120 B
3
1

DNS Request

yt3.ggpht.com

DNS Request

yt3.ggpht.com

DNS Request

yt3.ggpht.com

DNS Response

216.58.215.33
8.8.8.8:53

33.215.58.216.in-addr.arpa

dns

72 B
110 B
1
1

DNS Request

33.215.58.216.in-addr.arpa
8.8.8.8:53

rr3---sn-4g5edn6r.googlevideo.com

dns

msedge.exe

158 B
250 B
2
2

DNS Request

rr3---sn-4g5edn6r.googlevideo.com

DNS Response

74.125.153.200

DNS Request

rr3---sn-4g5edn6r.googlevideo.com

DNS Response

74.125.153.200
8.8.8.8:53

200.153.125.74.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

200.153.125.74.in-addr.arpa
74.125.153.200:443

rr3---sn-4g5edn6r.googlevideo.com

https

msedge.exe

2.3kB
6.1kB
7
10
216.58.215.33:443

yt3.ggpht.com

https

msedge.exe

3.8kB
9.6kB
10
12
8.8.8.8:53

github.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

75 B
253 B
1
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.194.137

3.5.20.33

3.5.23.235

52.216.60.193

3.5.27.30

3.5.28.27

52.216.146.139

52.217.112.73
8.8.8.8:53

api.github.com

dns

msedge.exe

120 B
152 B
2
2

DNS Request

api.github.com

DNS Response

20.26.156.210

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

65 B
174 B
1
1

DNS Request

aefd.nelreports.net

DNS Response

173.222.211.40

173.222.211.41
173.222.211.40:443

aefd.nelreports.net

https

msedge.exe

2.2kB
4.2kB
9
12
142.250.201.174:443

suggestqueries-clients6.youtube.com

https

msedge.exe

6.9kB
9.0kB
18
21
8.8.8.8:53

raw.githubusercontent.com

dns

msedge.exe

71 B
135 B
1
1

DNS Request

raw.githubusercontent.com

DNS Response

185.199.109.133

185.199.110.133

185.199.108.133

185.199.111.133
8.8.8.8:53

9.173.189.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

9.173.189.20.in-addr.arpa
216.58.214.174:443

www.youtube.com

https

msedge.exe

7.1kB
3.3kB
11
11
8.8.8.8:53

pulsar.ebay.com.au

dns

msedge.exe

192 B
313 B
3
1

DNS Request

pulsar.ebay.com.au

DNS Request

pulsar.ebay.com.au

DNS Request

pulsar.ebay.com.au

DNS Response

104.117.183.40

104.117.183.115

104.117.183.24

104.117.183.129

104.117.183.42

104.117.183.72

104.117.183.120

104.117.183.114

104.117.183.130
8.8.8.8:53

api.github.com

dns

msedge.exe

120 B
76 B
2
1

DNS Request

api.github.com

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

40.183.117.104.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

40.183.117.104.in-addr.arpa
8.8.8.8:53

googleads.g.doubleclick.net

dns

msedge.exe

219 B
89 B
3
1

DNS Request

googleads.g.doubleclick.net

DNS Request

googleads.g.doubleclick.net

DNS Request

googleads.g.doubleclick.net

DNS Response

172.217.20.194
172.217.20.194:443

googleads.g.doubleclick.net

https

msedge.exe

3.7kB
3.9kB
10
12
8.8.8.8:53

194.20.217.172.in-addr.arpa

dns

146 B
171 B
2
1

DNS Request

194.20.217.172.in-addr.arpa

DNS Request

194.20.217.172.in-addr.arpa
8.8.8.8:53

github.com

dns

msedge.exe

168 B
72 B
3
1

DNS Request

github.com

DNS Request

github.com

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

github.githubassets.com

dns

msedge.exe

69 B
133 B
1
1

DNS Request

github.githubassets.com

DNS Response

185.199.108.154

185.199.111.154

185.199.109.154

185.199.110.154
8.8.8.8:53

avatars.githubusercontent.com

dns

msedge.exe

75 B
139 B
1
1

DNS Request

avatars.githubusercontent.com

DNS Response

185.199.108.133

185.199.110.133

185.199.111.133

185.199.109.133
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

75 B
253 B
1
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

3.5.29.131

54.231.193.49

52.216.210.121

54.231.167.49

3.5.9.180

16.182.103.249

52.217.206.193

3.5.29.163
8.8.8.8:53

codeload.github.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

codeload.github.com

DNS Response

20.26.156.216
8.8.8.8:53

153.37.126.104.in-addr.arpa

dns

146 B
278 B
2
2

DNS Request

153.37.126.104.in-addr.arpa

DNS Request

153.37.126.104.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

114 B
636 B
2
2

DNS Request

th.bing.com

DNS Request

th.bing.com

DNS Response

95.101.129.235

95.101.129.202

95.101.129.194

95.101.129.146

95.101.129.233

95.101.129.234

95.101.129.200

95.101.129.210

95.101.129.208

DNS Response

95.101.129.146

95.101.129.232

95.101.129.211

95.101.129.234

95.101.129.225

95.101.129.226

95.101.129.233

95.101.129.235

95.101.129.194
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
316 B
1
1

DNS Request

r.bing.com

DNS Response

95.101.129.208

95.101.129.146

95.101.129.200

95.101.129.211

95.101.129.194

95.101.129.202

95.101.129.218

95.101.129.235

95.101.129.210
8.8.8.8:53

235.129.101.95.in-addr.arpa

dns

146 B
139 B
2
1

DNS Request

235.129.101.95.in-addr.arpa

DNS Request

235.129.101.95.in-addr.arpa
8.8.8.8:53

208.129.101.95.in-addr.arpa

dns

146 B
139 B
2
1

DNS Request

208.129.101.95.in-addr.arpa

DNS Request

208.129.101.95.in-addr.arpa
8.8.8.8:53

services.bingapis.com

dns

msedge.exe

67 B
152 B
1
1

DNS Request

services.bingapis.com

DNS Response

13.107.5.80
8.8.8.8:53

fpt.microsoft.com

dns

msedge.exe

63 B
182 B
1
1

DNS Request

fpt.microsoft.com

DNS Response

52.167.30.171
8.8.8.8:53

80.5.107.13.in-addr.arpa

dns

70 B
156 B
1
1

DNS Request

80.5.107.13.in-addr.arpa
8.8.8.8:53

fpt2.microsoft.com

dns

msedge.exe

64 B
183 B
1
1

DNS Request

fpt2.microsoft.com

DNS Response

52.167.30.171
8.8.8.8:53

171.30.167.52.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

171.30.167.52.in-addr.arpa
8.8.8.8:53

www.python.org

dns

msedge.exe

60 B
121 B
1
1

DNS Request

www.python.org

DNS Response

151.101.188.223
8.8.8.8:53

223.188.101.151.in-addr.arpa

dns

222 B
134 B
3
1

DNS Request

223.188.101.151.in-addr.arpa

DNS Request

223.188.101.151.in-addr.arpa

DNS Request

223.188.101.151.in-addr.arpa
8.8.8.8:53

plausible.io

dns

msedge.exe

58 B
74 B
1
1

DNS Request

plausible.io

DNS Response

143.244.38.136
8.8.8.8:53

ajax.googleapis.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

ajax.googleapis.com

DNS Response

142.250.74.234
142.250.74.234:443

ajax.googleapis.com

https

msedge.exe

6.1kB
113.6kB
48
88
8.8.8.8:53

226.20.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

226.20.18.104.in-addr.arpa
8.8.8.8:53

136.38.244.143.in-addr.arpa

dns

73 B
116 B
1
1

DNS Request

136.38.244.143.in-addr.arpa
8.8.8.8:53

234.74.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

234.74.250.142.in-addr.arpa
8.8.8.8:53

238.75.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

238.75.250.142.in-addr.arpa
8.8.8.8:53

media.ethicalads.io

dns

msedge.exe

130 B
226 B
2
2

DNS Request

media.ethicalads.io

DNS Response

104.26.5.62

104.26.4.62

172.67.71.230

DNS Request

media.ethicalads.io

DNS Response

104.26.4.62

172.67.71.230

104.26.5.62
8.8.8.8:53

s3.dualstack.us-east-2.amazonaws.com

dns

msedge.exe

82 B
210 B
1
1

DNS Request

s3.dualstack.us-east-2.amazonaws.com

DNS Response

52.219.101.209

52.219.94.153

3.5.129.226

52.219.178.89

3.5.130.62

3.5.132.206

3.5.130.205

52.219.111.185
8.8.8.8:53

ssl.google-analytics.com

dns

msedge.exe

70 B
86 B
1
1

DNS Request

ssl.google-analytics.com

DNS Response

142.250.179.104
8.8.8.8:53

2p66nmmycsj3.statuspage.io

dns

msedge.exe

72 B
164 B
1
1

DNS Request

2p66nmmycsj3.statuspage.io

DNS Response

18.244.155.119

18.244.155.108

18.244.155.98

18.244.155.106
142.250.179.104:443

ssl.google-analytics.com

https

msedge.exe

4.1kB
7.0kB
9
11
8.8.8.8:53

62.5.26.104.in-addr.arpa

dns

70 B
132 B
1
1

DNS Request

62.5.26.104.in-addr.arpa
8.8.8.8:53

104.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

104.179.250.142.in-addr.arpa
8.8.8.8:53

209.101.219.52.in-addr.arpa

dns

73 B
113 B
1
1

DNS Request

209.101.219.52.in-addr.arpa
8.8.8.8:53

119.155.244.18.in-addr.arpa

dns

73 B
131 B
1
1

DNS Request

119.155.244.18.in-addr.arpa
8.8.8.8:53

www.youtube.com

dns

msedge.exe

122 B
542 B
2
2

DNS Request

www.youtube.com

DNS Request

www.youtube.com

DNS Response

216.58.214.174

142.250.178.142

142.250.201.174

216.58.215.46

172.217.18.206

142.250.75.238

142.250.179.78

216.58.213.78

172.217.20.174

142.250.179.110

172.217.20.206

DNS Response

142.250.179.78

216.58.215.46

142.250.201.174

172.217.20.174

216.58.214.174

172.217.20.206

142.250.75.238

172.217.18.206

142.250.179.110

216.58.213.78

142.250.178.142
216.58.214.174:443

www.youtube.com

https

msedge.exe

4.4kB
3.1kB
9
10
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

195 B
174 B
3
1

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Response

173.222.211.40

173.222.211.41
173.222.211.40:443

aefd.nelreports.net

https

msedge.exe

2.2kB
2.7kB
9
11
8.8.8.8:53

209.129.101.95.in-addr.arpa

dns

146 B
278 B
2
2

DNS Request

209.129.101.95.in-addr.arpa

DNS Request

209.129.101.95.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

95.101.129.210

95.101.129.219

95.101.129.200

95.101.129.208

95.101.129.211

95.101.129.209

95.101.129.202

95.101.129.224

95.101.129.201
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
316 B
1
1

DNS Request

r.bing.com

DNS Response

95.101.129.146

95.101.129.235

95.101.129.201

95.101.129.202

95.101.129.209

95.101.129.194

95.101.129.195

95.101.129.200

95.101.129.208
8.8.8.8:53

146.129.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

146.129.101.95.in-addr.arpa
8.8.8.8:53

services.bingapis.com

dns

msedge.exe

134 B
152 B
2
1

DNS Request

services.bingapis.com

DNS Request

services.bingapis.com

DNS Response

13.107.5.80
8.8.8.8:53

89.33.18.104.in-addr.arpa

dns

142 B
133 B
2
1

DNS Request

89.33.18.104.in-addr.arpa

DNS Request

89.33.18.104.in-addr.arpa
8.8.8.8:53

apps.microsoft.com

dns

msedge.exe

64 B
253 B
1
1

DNS Request

apps.microsoft.com

DNS Response

13.107.246.64
8.8.8.8:53

sparkcdneus2.azureedge.net

dns

msedge.exe

72 B
146 B
1
1

DNS Request

sparkcdneus2.azureedge.net

DNS Response

152.199.19.161
8.8.8.8:53

images-eds-ssl.xboxlive.com

dns

msedge.exe

73 B
176 B
1
1

DNS Request

images-eds-ssl.xboxlive.com

DNS Response

2.18.108.7
8.8.8.8:53

musicart.xboxlive.com

dns

msedge.exe

67 B
161 B
1
1

DNS Request

musicart.xboxlive.com

DNS Response

2.18.108.7
8.8.8.8:53

store-images.microsoft.com

dns

msedge.exe

72 B
179 B
1
1

DNS Request

store-images.microsoft.com

DNS Response

2.18.109.103
8.8.8.8:53

www.clarity.ms

dns

msedge.exe

60 B
223 B
1
1

DNS Request

www.clarity.ms

DNS Response

13.107.246.67
8.8.8.8:53

64.246.107.13.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

64.246.107.13.in-addr.arpa
8.8.8.8:53

161.19.199.152.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

161.19.199.152.in-addr.arpa
8.8.8.8:53

7.108.18.2.in-addr.arpa

dns

69 B
131 B
1
1

DNS Request

7.108.18.2.in-addr.arpa
8.8.8.8:53

112.245.100.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

112.245.100.95.in-addr.arpa
8.8.8.8:53

103.109.18.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

103.109.18.2.in-addr.arpa
8.8.8.8:53

67.246.107.13.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

67.246.107.13.in-addr.arpa
8.8.8.8:53

h.clarity.ms

dns

msedge.exe

116 B
139 B
2
1

DNS Request

h.clarity.ms

DNS Request

h.clarity.ms

DNS Response

51.8.64.151
8.8.8.8:53

h.clarity.ms

dns

msedge.exe

58 B
139 B
1
1

DNS Request

h.clarity.ms

DNS Response

51.8.64.151
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

195 B
174 B
3
1

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Response

173.222.211.40

173.222.211.41
173.222.211.40:443

aefd.nelreports.net

https

msedge.exe

3.6kB
2.6kB
9
10
8.8.8.8:53

yt3.ggpht.com

dns

msedge.exe

59 B
120 B
1
1

DNS Request

yt3.ggpht.com

DNS Response

216.58.215.33
216.58.215.33:443

yt3.ggpht.com

https

msedge.exe

7.7kB
34.7kB
37
41
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

95.101.129.232

95.101.129.226

95.101.129.224

95.101.129.234

95.101.129.235

95.101.129.194

95.101.129.146

95.101.129.233

95.101.129.225
8.8.8.8:53

r.bing.com

dns

msedge.exe

112 B
632 B
2
2

DNS Request

r.bing.com

DNS Request

r.bing.com

DNS Response

95.101.129.233

95.101.129.226

95.101.129.211

95.101.129.232

95.101.129.224

95.101.129.210

95.101.129.219

95.101.129.216

95.101.129.225

DNS Response

95.101.129.219

95.101.129.208

95.101.129.216

95.101.129.224

95.101.129.209

95.101.129.210

95.101.129.200

95.101.129.211

95.101.129.201
8.8.8.8:53

233.129.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

233.129.101.95.in-addr.arpa
8.8.8.8:53

232.129.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

232.129.101.95.in-addr.arpa
216.58.214.174:443

www.youtube.com

https

msedge.exe

38.8kB
60.9kB
68
72
8.8.8.8:53

i.ytimg.com

dns

msedge.exe

114 B
498 B
2
2

DNS Request

i.ytimg.com

DNS Request

i.ytimg.com

DNS Response

216.58.214.86

216.58.214.182

142.250.179.86

142.250.201.182

172.217.20.182

142.250.74.246

172.217.18.214

172.217.20.214

142.250.75.246

216.58.215.54

142.250.179.118

142.250.178.150

DNS Response

172.217.20.182

172.217.18.214

216.58.215.54

142.250.75.246

142.250.179.118

142.250.74.246

142.250.179.86

216.58.214.86

142.250.178.150

142.250.201.182

172.217.20.214

216.58.214.182
216.58.214.86:443

i.ytimg.com

https

msedge.exe

15.7kB
517.4kB
144
424
8.8.8.8:53

86.214.58.216.in-addr.arpa

dns

72 B
171 B
1
1

DNS Request

86.214.58.216.in-addr.arpa
8.8.8.8:53

rr4---sn-4g5edn6r.googlevideo.com

dns

msedge.exe

395 B
5

DNS Request

rr4---sn-4g5edn6r.googlevideo.com

DNS Request

rr4---sn-4g5edn6r.googlevideo.com

DNS Request

rr4---sn-4g5edn6r.googlevideo.com

DNS Request

rr4---sn-4g5edn6r.googlevideo.com

DNS Request

rr4---sn-4g5edn6r.googlevideo.com
8.8.8.8:53

play.google.com

dns

msedge.exe

305 B
77 B
5
1

DNS Request

play.google.com

DNS Request

play.google.com

DNS Request

play.google.com

DNS Request

play.google.com

DNS Request

play.google.com

DNS Response

142.250.201.174
8.8.8.8:53

googleads.g.doubleclick.net

dns

msedge.exe

219 B
89 B
3
1

DNS Request

googleads.g.doubleclick.net

DNS Request

googleads.g.doubleclick.net

DNS Request

googleads.g.doubleclick.net

DNS Response

216.58.214.66
216.58.214.66:443

googleads.g.doubleclick.net

https

msedge.exe

3.7kB
3.7kB
10
12
8.8.8.8:53

66.214.58.216.in-addr.arpa

dns

144 B
338 B
2
2

DNS Request

66.214.58.216.in-addr.arpa

DNS Request

66.214.58.216.in-addr.arpa
142.250.201.174:443

play.google.com

https

msedge.exe

4.4kB
3.5kB
11
12
8.8.8.8:53

rr4---sn-4g5edn6r.googlevideo.com

dns

msedge.exe

158 B
125 B
2
1

DNS Request

rr4---sn-4g5edn6r.googlevideo.com

DNS Request

rr4---sn-4g5edn6r.googlevideo.com

DNS Response

74.125.153.201
8.8.8.8:53

201.153.125.74.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

201.153.125.74.in-addr.arpa
8.8.8.8:53

h.clarity.ms

dns

msedge.exe

116 B
278 B
2
2

DNS Request

h.clarity.ms

DNS Response

51.8.64.151

DNS Request

h.clarity.ms

DNS Response

51.8.64.151
142.250.201.174:443

play.google.com

https

msedge.exe

7.1kB
6.1kB
13
13
216.58.214.86:443

i.ytimg.com

https

msedge.exe

6.8kB
136.5kB
60
106
8.8.8.8:53

h.clarity.ms

dns

msedge.exe

58 B
139 B
1
1

DNS Request

h.clarity.ms

DNS Response

51.8.64.151
8.8.8.8:53

roaming.officeapps.live.com

dns

WINWORD.EXE

146 B
496 B
2
2

DNS Request

roaming.officeapps.live.com

DNS Request

roaming.officeapps.live.com

DNS Response

52.109.76.243

DNS Response

52.109.76.243
8.8.8.8:53

46.28.109.52.in-addr.arpa

dns

142 B
145 B
2
1

DNS Request

46.28.109.52.in-addr.arpa

DNS Request

46.28.109.52.in-addr.arpa
8.8.8.8:53

243.76.109.52.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

243.76.109.52.in-addr.arpa
142.250.201.174:443

play.google.com

https

msedge.exe

5.1kB
3.2kB
9
8
8.8.8.8:53

174.117.168.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

174.117.168.52.in-addr.arpa
8.8.8.8:53

h.clarity.ms

dns

msedge.exe

58 B
139 B
1
1

DNS Request

h.clarity.ms

DNS Response

51.8.64.151
8.8.8.8:53

metadata.templates.cdn.office.net

dns

WINWORD.EXE

79 B
231 B
1
1

DNS Request

metadata.templates.cdn.office.net

DNS Response

23.40.43.123

23.40.43.41
8.8.8.8:53

binaries.templates.cdn.office.net

dns

WINWORD.EXE

158 B
404 B
2
2

DNS Request

binaries.templates.cdn.office.net

DNS Request

binaries.templates.cdn.office.net

DNS Response

173.222.211.57

173.222.211.24

DNS Response

173.222.211.57

173.222.211.24
8.8.8.8:53

123.43.40.23.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

123.43.40.23.in-addr.arpa
8.8.8.8:53

backstory.ebay.com.au

dns

msedge.exe

134 B
644 B
2
2

DNS Request

backstory.ebay.com.au

DNS Request

backstory.ebay.com.au

DNS Response

104.117.183.96

104.117.183.99

104.117.183.88

104.117.183.90

104.117.183.80

104.117.183.83

104.117.183.107

104.117.183.74

104.117.183.81

DNS Response

104.117.183.113

104.117.183.90

104.117.183.96

104.117.183.120

104.117.183.88

104.117.183.128

104.117.183.107

104.117.183.121

104.117.183.99
8.8.8.8:53

sr-client-cfg.amplitude.com

dns

msedge.exe

73 B
137 B
1
1

DNS Request

sr-client-cfg.amplitude.com

DNS Response

143.204.176.23

143.204.176.49

143.204.176.53

143.204.176.61
8.8.8.8:53

96.183.117.104.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

96.183.117.104.in-addr.arpa
8.8.8.8:53

23.176.204.143.in-addr.arpa

dns

73 B
131 B
1
1

DNS Request

23.176.204.143.in-addr.arpa
8.8.8.8:53

rover.ebay.com.au

dns

msedge.exe

126 B
310 B
2
2

DNS Request

rover.ebay.com.au

DNS Request

rover.ebay.com.au

DNS Response

2.18.109.11

DNS Response

2.18.109.11
8.8.8.8:53

11.109.18.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

11.109.18.2.in-addr.arpa
8.8.8.8:53

www.facebook.com

dns

msedge.exe

62 B
107 B
1
1

DNS Request

www.facebook.com

DNS Response

157.240.17.35
8.8.8.8:53

www.ebay.com.au

dns

msedge.exe

61 B
160 B
1
1

DNS Request

www.ebay.com.au

DNS Response

2.18.109.98
8.8.8.8:53

35.17.240.157.in-addr.arpa

dns

72 B
125 B
1
1

DNS Request

35.17.240.157.in-addr.arpa
8.8.8.8:53

98.109.18.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

98.109.18.2.in-addr.arpa
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

130 B
348 B
2
2

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Response

173.222.211.40

173.222.211.41

DNS Response

173.222.211.41

173.222.211.40
173.222.211.40:443

aefd.nelreports.net

https

msedge.exe

3.5kB
2.5kB
8
9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Event Triggered Execution

T1546

Component Object Model Hijacking

T1546.015

Pre-OS Boot

T1542

Bootkit

T1542.003

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Event Triggered Execution

T1546

Component Object Model Hijacking

T1546.015

Defense Evasion

Modify Registry

T1112

Pre-OS Boot

T1542

Bootkit

T1542.003

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Browser Information Discovery

T1217

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Config.Msi\e5f8a1b.rbs

Filesize
8KB

MD5
7217f08e252d53d4d6f43bfa2518e6b4

SHA1
399e94b8c31edf3ee512c0c0a64f194cf65eba5e

SHA256
024d226ab251e3a250a25c6db14d7f791cba08dbdefba35d8043ee074851c33d

SHA512
f61b197b1916a7d2022b0a6422a4fadfb24e8a30fe59df89c02e9efaa3868d6b5328325d3f318d9538bcf63288cc1477dda04ebbf65a972991ace0aaa24f3004

Download Submit
C:\Config.Msi\e5f8a20.rbs

Filesize
12KB

MD5
032e0c10705b76ba36e788ca558729f1

SHA1
5b6c4006ec134bad71aa1b7169ba0fa553f3326a

SHA256
d3e005a9dd89ffbe8c33eb6f7316292ee95bcb283be0973fd1977b77169f2099

SHA512
e5a9be0514aede389572bec533ff26693a1784c678eb45a88ade89d2d1abd960f12fa1493a34c48ec7fcf482f09f03b3aee5a687a5524497c6690152bd6fa2bc

Download Submit
C:\Config.Msi\e5f8a25.rbs

Filesize
50KB

MD5
a0f1502104e54db0fe51d5345ae86d15

SHA1
fc57bbc40043da922e77ac17eb251e08a3f0bb4e

SHA256
71409a85496c44aed2e1d9a9ced2e11b4d406b98639444210eb7972ba94ba5b2

SHA512
55d86c1c551a19d41e5878da0b326d6d0278bc4d43f53be427937b6ccbffaebb1014e1147d511a3669a122465b93e8c4948ead0cdd2583beb7a5c6dd6d047c05

Download Submit
C:\Config.Msi\e5f8a2a.rbs

Filesize
138KB

MD5
e38d2dfe46c5d9282a1541eaec569a08

SHA1
1c504d5d1c7894b51d2fcd3574b50552b676d866

SHA256
d441f226f9030b42e61bebd6da810ee30bba8b415bb6ef39a2c5962630b527f1

SHA512
ab3a4590ef24ba305da893d4cc1a6a488ced4152f76fe88ba966f36ca8c0de99810d97799166eb93e6f22e73159978ab77a1d4eed4cd884d2befeb029b466013

Download Submit
C:\Config.Msi\e5f8a2f.rbs

Filesize
349KB

MD5
700ddf80fcd416b9810b7a4cf9b65b68

SHA1
68894fca04ea155a01157ba6318bbd113d50dea3

SHA256
f8a8efbee3b84c1a4991fff20ba9a7504bef6ca2b03b8ad02aaf9f356600835d

SHA512
a0ed0cc58944c6eee3f5fa167d5afe9fdd7aaee6aee34f68f70493bd22a6ec42f7ced69935b9670ae794b3e587f0b100a4c7ef086d9ef25a53de7eee45382b8e

Download Submit
C:\Config.Msi\e5f8a34.rbs

Filesize
133KB

MD5
e5157ca5d017f65d7f1c7a41ac9618a9

SHA1
a95430f57001e76637742aa19b32a7838600fb25

SHA256
1cadf65fbb895b8106ea2609fd17e3866e14c99d7204b988a1d7e15f811c01ea

SHA512
5ef815370fef95c976f6666a7fd8fa58a5f1d5796f291286131128a9015ab7c6767981c1f3f2e21042171db84809ef99ed1e61138d1df082f36634aa06d7b340

Download Submit
C:\Config.Msi\e5f8a39.rbs

Filesize
310KB

MD5
4008ff6dc20f8f4ce4d08f2f4bf4d0e0

SHA1
61b312530486f6173a233bd9bf37ffd8736b2acd

SHA256
28c4960eb193ac704a43462231c14e23a1fcd33cadc4542787160a6ddae296e7

SHA512
650a1a9041a36c8febf93f067193a300f0422456fa80d6e6b8ca00f396fe401af85bbc2c1e49d4814fd0062988f2727890515411a74c6bd148980f2305b8b947

Download Submit
C:\Config.Msi\e5f8a3e.rbs

Filesize
14KB

MD5
7c344e6bedb42e8bbeefff11e828d507

SHA1
09b0376b0845a9c1bdebdb176dc1e3c525ea72ca

SHA256
1457910587709fec8c247e214105981a0411e84b360b37410e0ade77319f6961

SHA512
b9010c7b98e6588d37296463759cc4734af315e67c2ed48aa3cc52e6867e6d1dcebab68edc56e6fad702d3f39d4d6455a9206714f6b79dd843c6537d7ee1629e

Download Submit
C:\Config.Msi\e5f8a43.rbs

Filesize
8KB

MD5
6f0fa7c73041afd05085874df7e99abc

SHA1
b66a69e73c8c1064fb81c7c6a3813f53d8cb4c11

SHA256
c532798becb36e8620dcd53ce212b16f895e4aa8ef839ea3d14920eb3dfb76a0

SHA512
09f2cd1d1fac53a96923b6f3f599e9b9d13ece4dcf39455b3341d345d66948530a67a18e02b57d522d8ad74c4039824a74ac200dc23c470a98a6e51cb704607e

Download Submit
C:\Program Files (x86)\Butterfly on Desktop\ButterflyOnDesktop.exe

Filesize
3.0MB

MD5
81aab57e0ef37ddff02d0106ced6b91e

SHA1
6e3895b350ef1545902bd23e7162dfce4c64e029

SHA256
a70f9e100dddb177f68ee7339b327a20cd9289fae09dcdce3dbcbc3e86756287

SHA512
a651d0a526d31036a302f7ef1ee2273bb7c29b5206c9b17339baa149dd13958ca63db827d09b4e12202e44d79aac2e864522aca1228118ba3dcd259fe1fcf717

Download Submit
C:\Program Files\7-Zip\7zG.exe

Filesize
5.6MB

MD5
40228458ca455d28e33951a2f3844209

SHA1
86165eb8eb3e99b6efa25426508a323be0e68a44

SHA256
1a904494bb7a21512af6013fe65745e7898cdd6fadac8cb58be04e02346ed95f

SHA512
da62cc244f9924444c7cb4fdbd46017c65e6130d639f6696f7930d867017c211df8b18601bfdaaee65438cee03977848513d7f08987b9b945f3f05241f55ec39

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
9e3fc58a8fb86c93d19e1500b873ef6f

SHA1
c6aae5f4e26f5570db5e14bba8d5061867a33b56

SHA256
828f4eacac1c40b790fd70dbb6fa6ba03dcc681171d9b2a6579626d27837b1c4

SHA512
e5e245b56fa82075e060f468a3224cf2ef43f1b6d87f0351a2102d85c7c897e559be4caeaecfdc4059af29fdc674681b61229319dda95cb2ee649b2eb98d313e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
27304926d60324abe74d7a4b571c35ea

SHA1
78b8f92fcaf4a09eaa786bbe33fd1b0222ef29c1

SHA256
7039ad5c2b40f4d97c8c2269f4942be13436d739b2e1f8feb7a0c9f9fdb931de

SHA512
f5b6181d3f432238c7365f64fc8a373299e23ba8178bcc419471916ef8b23e909787c7c0617ab22e4eb90909c02bd7b84f1386fbc61e2bdb5a0eb474175da4bd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\724ddbd8-c55c-40a8-8e55-0c9b2d5e4815.tmp

Filesize
7KB

MD5
df225c3911cafc8b6e9f87b7c3580f9f

SHA1
d7d809460e9b3d1227e2b4f4fd4dbd7d85c6bb73

SHA256
e3730cc2733bb863fab557f1cfae69983b65048f2144b4aa6f0b124df46c4f77

SHA512
81dd41a7fb502df58a6bb5998deabd8800b80ac0fb66a59cad922ad9b186a5fa463003af0a57e76e3a77198088235ad9aabdac9bae868a5c2bf59e586f403ac7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

Filesize
17KB

MD5
e9cb5016ce37efbb913891aab37d0dd4

SHA1
06d865cb43fe1375e75539809425f46ca012d449

SHA256
fbdbea2a6f3219ffae9a23716a83cdb3077a8c605351bcb46854b416247a12cf

SHA512
f2d81d2f493dcde98476c75b182a76501eeb742898f723187145fa94f4d82e6498c66838e15d01cc7ab2faeff2d5102645085a12e03f67d3918bc9fc110c4793

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000031

Filesize
70KB

MD5
0f6e110e02a790b2f0635d0815c12e5c

SHA1
2411810c083a7fda31c5e6dd6f1f9cf1b971e46c

SHA256
2f7018f3c214ace280e4bd37aabe0690bd9d8d0532f38e32a29d1f9de1320605

SHA512
2f2fb7c4ddfb6abb5dcde466269f625eea58a2c69d25830e6bb24126e7679ec7c83fdb0d8ff2a7de4dd4b994513f5e80813dbf1f5d6a9a474c3a60d8bee74f4f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000032

Filesize
64KB

MD5
d6b36c7d4b06f140f860ddc91a4c659c

SHA1
ccf16571637b8d3e4c9423688c5bd06167bfb9e9

SHA256
34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92

SHA512
2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000033

Filesize
43KB

MD5
e352d970a4f70796e375f56686933101

SHA1
20638161142277687374c446440c3239840362b4

SHA256
8a346ccc26d3ae6ded2665b27b443d6f17580650d3fdd44ef1bb6305bee37d52

SHA512
b2c95bc6a7bd4cc5ef1d7ea17d839219a1aa5eba6baeb5eab6a57ec0a7adbc341eb7c4d328bcc03476d73fd4d70f3a4bdec471a22f9eb3e42eb2cae94eeb1ccc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000034

Filesize
65KB

MD5
56d57bc655526551f217536f19195495

SHA1
28b430886d1220855a805d78dc5d6414aeee6995

SHA256
f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4

SHA512
7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000035

Filesize
19KB

MD5
2e86a72f4e82614cd4842950d2e0a716

SHA1
d7b4ee0c9af735d098bff474632fc2c0113e0b9c

SHA256
c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f

SHA512
7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000037

Filesize
27KB

MD5
c3bd38af3c74a1efb0a240bf69a7c700

SHA1
7e4b80264179518c362bef5aa3d3a0eab00edccd

SHA256
1151160e75f88cbc8fe3ada9125cc2822abc1386c0eab7a1d5465cfd004522c8

SHA512
41a2852c8a38700cf4b38697f3a6cde3216c50b7ed23d80e16dea7f5700e074f08a52a10ba48d17111bb164c0a613732548fe65648658b52db882cacb87b9e8e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003b

Filesize
37KB

MD5
a2ade5db01e80467e87b512193e46838

SHA1
40b35ee60d5d0388a097f53a1d39261e4e94616d

SHA256
154a7cfc19fb8827601d1f8eda3788b74e2018c96779884b13da73f6b1853a15

SHA512
1c728558e68ed5c0a7d19d8f264ad3e3c83b173b3e3cd5f53f5f3b216ed243a16944dbe6b2159cfe40ee4a3813ca95a834f162073a296b72bbdedc15546be8f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003c

Filesize
37KB

MD5
48f925eefce06701a10bb34743596ef6

SHA1
3271af5587fb44878f2355cb99cc2a5a915706fd

SHA256
85712a77e89fff00123155170da85c01b812e5b68de05a05f59c71fcba597a17

SHA512
76993db32748cf3f3295318b153ab6fd85d18a624f5b75d85d2e8c7b39f5d19003cb10c659173dee6a87aec02ce30f3f3219ca9bfae0996e37db64fd6b446d6e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003d

Filesize
21KB

MD5
7715176f600ed5d40eaa0ca90f7c5cd7

SHA1
00fdb1d5b1421ea03d2d33542a4eaf7ac543d3d0

SHA256
154632629a0698587e95c608e6ed5f232e2ba1a33d7c07fea862a25293a9926e

SHA512
799cfee1969b6137813c98b83b90052c04527b273156f577841b64828c07c4e6a3913a6ddd49ae5021ed54a367ddbc5ab2193226960b0ffe9a618c663c8d8a1c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003e

Filesize
20KB

MD5
c4b8e9bc1769a58f5265bbe40f7785ef

SHA1
07ff14df16d4b882361e1a0be6c2f10711ddce50

SHA256
2786986a3139e9722e667f81b4902609a4cf458e1c16206cd11feceee0254192

SHA512
a39157460b523ee2b9e1eacccf7aed99ff002767a8f87287c1c4662b6711b97f7d4955df64a86a882417fe71e598719e3934e14f787c1e6b3348c8a4c813e3ad

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003f

Filesize
18KB

MD5
2e23d6e099f830cf0b14356b3c3443ce

SHA1
027db4ff48118566db039d6b5f574a8ac73002bc

SHA256
7238196a5bf79e1b83cacb9ed4a82bf40b32cd789c30ef790e4eac0bbf438885

SHA512
165b1de091bfe0dd9deff0f8a3968268113d95edc9fd7a8081b525e0910f4442cfb3b4f5ac58ecfa41991d9dcabe5aa8b69f7f1c77e202cd17dd774931662717

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000040

Filesize
57KB

MD5
7e21b212cb697ee8dc11eb5d6318af30

SHA1
019139f1d160a7923d20dab67fb286a1e453285f

SHA256
c7bc66711c2ec323863307b2cb6d6b0175082f35d34c40c33befe11b86051baf

SHA512
9b8f1f8d9c5e1c39644b327b273850c5b2b403742b13222fcffa7ae074fe7040d0d0e05bc8f5986772f9106297dcf487c4f8367f249cf091300209b17459a697

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000041

Filesize
17KB

MD5
109a8cceba33695698297e575e56bfad

SHA1
2b8c6dce1ccd21a6eea2dd9aef2a8a6bde389053

SHA256
dd82d9ac034f0a06524fc1d5ef884c29a7e4d586a1e7db66e339dc54fac3636d

SHA512
6d51ed30c45560838df921212370a0044640a8e3c0433922106225cb6fec8cc115ac6191c753da13def21c4e0db4deb5782fb7a75ada822ced1db7c7d13beaf3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000042

Filesize
19KB

MD5
f5b631335f170065edf1b148e10b34d4

SHA1
ca34f82af577fec763ed38f0436d20f1cf766f62

SHA256
99be964ed51ca453ccfaa264a1ea9490da11e32b53765919172b6d3749a9f846

SHA512
c66791cbdc7c0d12e7295eb26eb583b26e03692c8986ab7d5dac0e6a561b8b68a8a9e33814121efc700ff6b472aa4f685162b0c75439b144f12286c9e28c7cc7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000043

Filesize
53KB

MD5
cfff8fc00d16fc868cf319409948c243

SHA1
b7e2e2a6656c77a19d9819a7d782a981d9e16d44

SHA256
51266cbe2741a46507d1bb758669d6de3c2246f650829774f7433bc734688a5a

SHA512
9d127abfdf3850998fd0d2fb6bd106b5a40506398eb9c5474933ff5309cdc18c07052592281dbe1f15ea9d6cb245d08ff09873b374777d71bbbc6e0594bde39b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000044

Filesize
16KB

MD5
9395baaa17b0a20ab4cbb63fb8b5f9fe

SHA1
41f9ee65e2a8df82ca7d0efa76a067580b75380e

SHA256
8ad28f829724670c14ecf5b8e2a1eebfa603ddbd3b4281aeca9ae5376cda9bb8

SHA512
ddffd1b003ed46eb248e5a5eaa5b7c65a2f5988132562b4172e8d863ff739e2a5613062808811bcfb5695f869556d31e31ca6484e066a581b1a25486f0de11cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000045

Filesize
24KB

MD5
fe0a6eac7306d055fc909588f90e0af5

SHA1
22922be807f01054f02bd994889da3e61ed21c5c

SHA256
c0658fec90025a3de4fd0b0cf4ee2c19ba754cf121a67e037aa8d0abbe2223b5

SHA512
357adead495cebaf6bc06e559e374ae706126a7e366b03cde8b989ee34d5b3d824c6f423dbc152d868837b068815fba39e4be569158ebf17c880f784fc16a823

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000046

Filesize
137KB

MD5
a336ad7a2818eb9c1d9b7d0f4cc7d456

SHA1
d5280cb38af2010e0860b7884a23de0484d18f62

SHA256
83bdfb7d266fd8436312f6145c1707ddf0fb060825527acfe364c5db859887a3

SHA512
fa69455b3bfc162ab86a12332fe13322dfd8749be456779c93a6ab93e1d628e246a31a0a55cdba0c45adb3085acd62ba0a094b2115529d70cb9f693f3b1da327

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000047

Filesize
23KB

MD5
bc715e42e60059c3ea36cd32bfb6ebc9

SHA1
b8961b23c29b9769100116ba0da44f13a24a3dd4

SHA256
110ccd760150c6ac29c987ee2b8f7c56772036f6fe74ff2fb56c094849912745

SHA512
5c0edd336a6d892f0163aa183e5482313dd86f9f5b2d624b3c4529692d70720f4823808f10ee7870fd9368b24de752b343570419fd244c33ad2d9cc86007bedc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000048

Filesize
40KB

MD5
3051c1e179d84292d3f84a1a0a112c80

SHA1
c11a63236373abfe574f2935a0e7024688b71ccb

SHA256
992cbdc768319cbd64c1ec740134deccbb990d29d7dccd5ecd5c49672fa98ea3

SHA512
df64e0f8c59b50bcffb523b6eab8fabf5f0c5c3d1abbfc6aa4831b4f6ce008320c66121dcedd124533867a9d5de83c424c5e9390bf0a95c8e641af6de74dabff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000049

Filesize
53KB

MD5
68f0a51fa86985999964ee43de12cdd5

SHA1
bbfc7666be00c560b7394fa0b82b864237a99d8c

SHA256
f230c691e1525fac0191e2f4a1db36046306eb7d19808b7bf8227b7ed75e5a0f

SHA512
3049b9bd4160bfa702f2e2b6c1714c960d2c422e3481d3b6dd7006e65aa5075eed1dc9b8a2337e0501e9a7780a38718d298b2415cf30ec9e115a9360df5fa2a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004d

Filesize
67KB

MD5
12793b05702482f518b5fd3396bba123

SHA1
4b7bc1985171c29be72b8c6c5c25b80c97c1b36f

SHA256
f76288f0c22faf8374fd02bf2f6b54e6e3c2d5a7531bfa64983efb82ad9add70

SHA512
97fffbdbbaffc16c0ac98d4bc600acfbba9629747f3cc1905924a20d657630805ba323957c597ec06a908e2d0fee978a5d3326da6c5b6d4bcacfeb16f091206d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000052

Filesize
231KB

MD5
858041c19204953e91ce39820b1007f3

SHA1
34085dab1e958dcaa9765eb20ada990aabb3dc26

SHA256
e8655b324342643465a3b7e5bb3f2de742b495551ec1e8820455f23dd8d7cf11

SHA512
dce0984c5e2730ca10dbe939fdce4c3ba972405cab6814a637700885f7da9feb98e51139325d1314afc758e20e12eab0f8d5fce35d35a724624a5858fa94bcdc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000059

Filesize
20KB

MD5
ad1bf2b67d24f7027dbfcd282b1babcf

SHA1
a7d26767ec5f00fa09e63ae73fb97a78e9e45c57

SHA256
372d61bde817fad93188f043c6b15391d6d8a9ac42b6e75b3bd25be9fafcec40

SHA512
8d4a6f1c32cc1408e4a9d4ba64f9390087eaf9eb8da1cda59f320fae9ed022665b6db441c9856c109a52644f0f7ba818a1a54dd2168e37eabbc2143b4a122a84

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005e

Filesize
53KB

MD5
4aaff05679dea827228007e563711a72

SHA1
dfe738c0b2c6642d8b185f6f9717bdd03e5b974d

SHA256
2238e7315d72e7e0a3b2301a13b8276958c2ded0dda9d1f9ac5b931c43a276ec

SHA512
eb21efffd524cb4fb6b1be839192c871526be1746704d9a7f4625fcd12a9a19e8888d49f5eda82e25d1b536d1901d0d78da1a46569d4faf102e8e1df6696886b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005f

Filesize
47KB

MD5
201a89b53e3d7ff9f45d78e9a191c8a5

SHA1
e4abe321ea8f590ca6a6c3b38c3e8fd8827d67b6

SHA256
a3f235d453979f32edcc800f6d8be8266c207361165a740ec917786f935c6daf

SHA512
179a594bf32cbf8c9b0c760780eeb83d55540c767bd619e7362abb7d66bf4d2301895dcf1cb9362390a7b5149589e499f73c87f210a73fd9e3a3fe41cc0e6642

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000a1

Filesize
17KB

MD5
4270b040f7da4100c0df73e7754965c7

SHA1
de9e1b4143b3465fe05c687d0970ee7d8d13782d

SHA256
8135600ab4fed4bd9ab199bc84b144842b06e4ceb6403c44b5079cc52099ff74

SHA512
ec8d0f42a5f77a0adab828f3f36fd535de300cf82c8b4b88e0a03f0f7ac99eb9f57f955d0cd3f07e87be8e516b5befd74d5a7c5c25a1db192205190e1a55c1d7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\00eb94830eef652e_0

Filesize
1KB

MD5
1cf05e2361f58e38bbe375a10238b8bd

SHA1
d8f4252569827d7ce2a161d1cb5c15dd0b9cc99d

SHA256
898eb62c97ea4606428d0292cc9463c9627f9f531430af7323d5620c71830903

SHA512
ea65d82a637564c257f89b617bccbd0451f5fb9ac1c25ad538d8bd9a5b452756ec6860bd0ae27a1c16f18f03f46e4c774b351fe9f290598e5275cf83b6e71d7e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\02735674612cbc52_0

Filesize
1KB

MD5
f9202643f858f3a7e30ab541f707c9e5

SHA1
09a59f580dcb8574f54e04ef5e786cd226275ffa

SHA256
f0e18a063030f4cf5c40954bf7443ebccd2cae29d29503c14b1571b0ed18a59a

SHA512
3bdff1925b8eeaa8e097ab7d9b7bc2c81d43217f2461947a6302d25036e4af33108f544c98eb7b4e3dbefdec55a700c9bd8bca3335e69eddc0d6772d0d341cd3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\06450eb6a7b09545_0

Filesize
2KB

MD5
33119ad0f055747f235332028a4e68bb

SHA1
25c0bfa852765e2781cd7945577da7d7891fe31c

SHA256
6f44b46fdc592e1be00c91a5ee0fff1d5abfe2be2e940f52d3e7050657749598

SHA512
da5a26ad76a8e0130745799db28641f86441df88f8d4516fbcd2ec39a04b302ac2e045f85d1fbb15e86afe16823a08c7ff01ebc3298f2c13c48400a5096aaa66

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\092f8bb537f2b13d_0

Filesize
720KB

MD5
280d2492a147d9e7db60acfe200f183e

SHA1
61f77352085f774a1f2c8821c450c202afc70a1c

SHA256
76e04aab41dbeed5e731b0ea72394e94cb68a2f56ec43a15ea6136d307585e15

SHA512
87ae065d519239500c087ad4b08ebb6f71e6193e0816fa7a3f8c94fdd11b56d221bfce55a147f0f21356a56f857efff2a6c7da555cbac2db06654e73046c6c17

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0aff8554a08780d8_0

Filesize
1KB

MD5
b47b2a470645a288bd9148c295177b4a

SHA1
f12197b695303d061e036d575fc99e404ce3ba3d

SHA256
9eacd9d5827d673ed410f6e1d6a2fd46256b74c1e524484222e2d3773a6f7fea

SHA512
6695886ee681881f24da53f510288b27f1ebdd1925c518f0998837d9e2dbdc1e8fbb034a81feb98ecf09f9f9a71c4e6e5c3b809f13c791067aefd396f0836b7f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0bbe00d9bf7b798e_0

Filesize
5KB

MD5
af2d57f044feb8995b22ae87d19f1628

SHA1
b6d36aff6297f70317d2f1ae7d0be61b3acb713b

SHA256
e897d4a92b74ae0ffeb102a7241dc23f59ca34a4d84507136b72c07a16586f59

SHA512
08128810c59e46283a1613b7824dcf5dcf88513e56932b53a39b8952e5d7d3d9cb7db2727e31d1c516aaf6a4c140e4bbeae83274a975a8de679a6285e6d247c7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\10c6494adcdcc0b3_0

Filesize
2KB

MD5
bd8f3cc5fa1e6d6c107f044ab9f8f9be

SHA1
3427f216cc3d7dd00067a9e1d0633a3d428c2b4e

SHA256
02e6102302f827bfe01724a406b0d952f0138e0d37e3acfbd724192be6ce5065

SHA512
b1655a4d7cdb9100f1f53cb2548aea422e6d56f2ab6a5ff6963cfe142ab0612778ed9789938ec3b2142202ead877ac8bc31a0329855e82c54907bf927501cc14

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\115807c81f46d2fa_0

Filesize
4KB

MD5
b49ae9144df53178c2fbdfd49066f06b

SHA1
62baafd62db4377948cba266e6902d2a9ba27195

SHA256
c87fd31878b1fbb1dd443f5fbf6455000644a19fca1e6dd8df1fdfcd92f75724

SHA512
5b860fb2337bd11cd2ed955671d5eb15e478b8ccef910c237e375a6d378cfb1cf3cfc769a4bd194d376d6961169c51831af76a6c1f02902620071a23339db880

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\120ab24e8b469464_0

Filesize
3KB

MD5
ca1062ee39f3178f5e9c980290d28490

SHA1
67278be313c2dcacdefc6769b29550828e5ddf6e

SHA256
abacc888e7f58bbd9f557edf021305dc25a969eb37c5753fce7a89be8d8825c0

SHA512
8491eabda297efc7546873266dc492c27579641ba4474044e662b99cb57f5332532a11092f2df60b6b5bad82f5a87e6642aa186d93f8468f357e95e5d246fcc8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\14050dd1d3952ed7_0

Filesize
1KB

MD5
fe5fe382e6322038e69363d1a1385058

SHA1
fe2c6aa552b58282379f4ab2b879978f2d2ff7d2

SHA256
61fe7f3d12647e94841406a37694d0336f2b2076928968b7aa0508acd4f3851f

SHA512
fa574f02c4240ada0e4d151b1a3a33e579bcd4382edc51cd5a3e5c3fb7fda650f1c7e6ef6ff13336fdaa3187d4c3ab6f110694b1dbe3859429cdf87910b75538

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\14ff8116b518ca2d_0

Filesize
2KB

MD5
dd517152c0f45a7afd61831a4d4be40f

SHA1
d15f3a7c2d9a918a0f1248b04fca232b2afc2287

SHA256
ab8327aa1bdd36d06a4924597f9e87d7294950706cbbf09143af3a8927a5f052

SHA512
bf7832ce16b7cc2b30bbe5836aff2eaad307b9ca711430e2f9413371ff38a6fcd24e167ef07e6fa7afc34651e2ae8957c4e1e4025f69c09a89cdddd6895d0931

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\168251be7271d371_0

Filesize
16KB

MD5
879a6d9252f1cb46a613c33349da0f60

SHA1
ad7dc9a25469c12b29de4293f4a7851214de491b

SHA256
23b6b5f3b3f658c0518ec700dde7e7b1d1aed2692714a42310f08934eb79c784

SHA512
d8333c8e889979c83064986916091ebd6eb3b43a996ce044b1d00ccfe66d1fa6803046cedafb10c6e915fb2018672bb8ef31bffd83018e696f80843d6770fcb4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1927a26afb9a8b4a_0

Filesize
2KB

MD5
f5888130f63af530b519e80bd7ae1aea

SHA1
8dfd3b7dda77751313f6d047a23853412fbb56e9

SHA256
7ce460e83f541f375cf01f6907736ab8076ea579719e7b803878c93e6c895f7e

SHA512
6468aacde4fa1cc1cc471f82ab448ac2ee694d46901fc69aa811aef537eaa6affa52f6ed61292ca8aa98cef62cb4a68c12e2a494067b5beb20d7eccf6baa2241

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\19cab43dbdbd4dab_0

Filesize
1KB

MD5
f96372dfd2f88c94c055917eab1798a2

SHA1
15d4a614616b73602e3fbd92e99224fef14f99ed

SHA256
667e283fb83c074fc94a804b8a5e537227f7f77acadc6631beb62065c6349a54

SHA512
91a16712819d9480621e5a5c16f6ad936d3b26d275ede47ba28c667b4566a426f65596d7da23fe2df259782db34d863098716370f66549779225951b26ddab89

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1b10c5824122b84d_0

Filesize
2KB

MD5
237111baee63c9bcdb59b81c46afa36f

SHA1
0d72c3b8293dba15cf01b168831042511e49bdf9

SHA256
94f1defdeb6bbacbd4987a2aa57bbde81c2998684c25d928c7cbde85fb0376a1

SHA512
003cfc06784f5354fdf94e91f2e320b6423eb902b5c9cb31eb8f253d9657c283309d4274768ae23fd3808a3e24570dce37cf752a3b112a5dc67232ba6a815f23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1b656fe85bc43465_0

Filesize
1KB

MD5
3e74fa9abea19be6b18944bb2f8c7cb7

SHA1
273205737c5544dd785cf4b3d41cd1ab70376b06

SHA256
6a6c749435724d565d91dd7bad05f0ff73814dd20c99515f5ed16d64e1372383

SHA512
de4d7130ab7348fdeee00047da39eb01de40fbf4106671189bffac2a981996a5a5c411a808362912ae67e4fe8bd50078e36b3f62e38c53d4c5f6de3f033dbb7b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1be50d0855513ff4_0

Filesize
72KB

MD5
54505629717a3d61ed17aa72cb1dfa04

SHA1
125998c8bac8731751b11a3562a578e84498cb5d

SHA256
1902f010a75eb7d13a00730fe2373bbc5b2957f31a433fef2f1cb9bffe611676

SHA512
4c18050836b23b455e36a51c8c770f31b527860dc854e23200389f83e0e4fb4e289ea56d0fe71d9d9eb1b2a9f80c62f44a82be9221397978a04790f5368c0a14

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1e54725c590c3137_0

Filesize
1KB

MD5
4f73edfd772833ffd6e48edd6a0aec86

SHA1
025fe277d5a1b376dc86e404f5a3f36496258231

SHA256
80c7aa368af7a2f5b17be72351cc50902a10a70ee55ab695cfa5b089d231a99d

SHA512
de63b955992608d570740aebebf587c94645a7d50e60ed0ed638c3be0cfeffc58ca800ec9d08fe2ba0db5c51929d7fa795c7f98497f948451760e620e6e3a601

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1f09fbf9f0dca9c4_0

Filesize
1KB

MD5
0a0d1cc77595dd503d2e8a5c37877ff0

SHA1
cea7cc277801fce92cfb70efa3a74ed1e1dbc305

SHA256
a42e90403cf55fe6f68dc50b15d4a3c7af5c857dee908257b4fab29f85f726dd

SHA512
62b42bf30b1f01d44a24de210570863a4a0e6214eb354c1f3163f16ed7f08d6bb0b4589d756f790489a1afeb23e5512d9e92f3f02db6a8aa245bcc0b4b3e0a8b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\202ee61178b3d1b4_0

Filesize
2KB

MD5
e60533beabf2298ba1cb6272aebcd1da

SHA1
93c0013fdc1e39ede825ce2d242a16233528ca9e

SHA256
37647e90dc9d8dca9fffef7d1d95fd456ca4543e7e09704870822b3557802ab6

SHA512
8321bce9f327512c9c2afc43e2f691781f102fe88ed24ae9c2462c53fcec87e97e22831b08da941452c699b296644b5cfbe7deafe466ba04aa48678c20ef6a60

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\20dac1bd8ef32ebe_0

Filesize
1KB

MD5
a8bb1c60530927c852a02e4729e0e3b4

SHA1
13a1956fe7b12d2149c9ea47072d2ce5705232d5

SHA256
da27cd12041b06fafb3b80edd2a5b5be5db27dcb91a80e35b522239e8c76e5da

SHA512
474d5b26bb9b6e5364253b67ddc14a7efdd0e5ecb825b644b2b85e11b0d3c999178eca5b1bf0743bcadef4edfe9805bce7e3c0a4023878cb1160d7361953fcd5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\25c90b4fb1c6ef85_0

Filesize
3KB

MD5
3d5f48c6ed8ed198112f3964e00615ee

SHA1
6f2f79c96e40d34d9423a04d1b1dcf73a4a95d77

SHA256
7bc293c860c10d059128eaa32a9f9d62a7af0314e6475486330d7c3042f909fd

SHA512
dd55efa6ab28f706ecb561911a84b2cd160e99bcb4416243e7d93e0ff090124156921cf4ba2b2d022440a7bc1eed093c8bf43d8ff5cce32045c4b0295bc54bdb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2b7ffcd51b01561f_0

Filesize
3KB

MD5
e86e2c4caf9612bf2e866e67ced787a9

SHA1
a3c93b2e28b34beaaf204cd904110232c734b822

SHA256
ec508ed4eede5b05952c09337ee772b56c84ec1fc37f721f2f0608cf90d38f15

SHA512
e4767185be2e6193e05195c85957d75af355d87d3eb96931ae9711764f1376fdf27c3f786c7d83a6bca78e883555a73a0f5c823284b6355c2d1b052053a143af

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2ced246d98cd3678_0

Filesize
366B

MD5
82b86eb9fec85fa02b4f0b7ab1d3aa4d

SHA1
f94943d62bb5b762ccb55d80d259894c605b20e1

SHA256
0de625396bfec1d9ca6020489557be5665e06aed2920dd8ec4c1934363bd8bad

SHA512
f52a05e76a16342dd39841e329eaee439e379255aad795cbbe3d336c483cafaabc6a87050e231108d414bcc4228d1c04866fdaee1a54129aff2d01454924cd97

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2d9c813a0dcdf108_0

Filesize
5KB

MD5
b0fa11b02eee54ecad970519f3468988

SHA1
c99841d4f2e66804272200ebb55a2e9955ecd0e3

SHA256
d79ff688fd19c5877e53ac74b32b43b8b17ffbe2c6984e7e8480977cf698bf56

SHA512
bcc6d1e2724c73316bdf9dff2c3877002213f053a87dfbc06da292d6da3f338fb630d584c08ac1b777cdba992f63d6e407ab61959149ef9d3b9ec3ef663fc6f0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2df2c057a5731c19_0

Filesize
1KB

MD5
a2fada3e9fcbcc395813727973ca29f9

SHA1
e9d82466918700f57810f360384e4ead6358b63f

SHA256
2541992c79beab5898e3d7341fdca2fb11ce0ce59a10ff907e79605162ed9d6c

SHA512
a077c3bd9357070de67ca001da7b2e4c1adc6b1fab0fe252cd5afcd42d45a49f4901d1df91972b8e5cc56ad7ead16bcdcd6e8b98f221cdfa4f622209f09ccc37

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\369eb01682225f64_0

Filesize
360B

MD5
b50d3e61d33349209042dc28f9b01f17

SHA1
5ec84e066e64cb20011489dd5f65c95d1f548862

SHA256
e0b156150e0e2ff43b2a0fa4ee28cbf2b447bb7adc52d5291eb8baa3ac33956d

SHA512
567980002ee503cc7d76a8ca0a3776139e275013afb176dba5a2af93801408abf45c4431a1506c5f23340e822fe4aebc5f0fea1865730494fdd029e5ad99230e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\37ca16582bfd954b_0

Filesize
2KB

MD5
00a6f1a6916b88f63806ce79bd0b852d

SHA1
54c2fad0673510c116c2fe6a07f58cc48469ac6d

SHA256
999369d755c1b2c33f6e9475858bfffe8f4bc0aec3c759196185b506f02ac71f

SHA512
c7756519599f7f9172d636965906d520a38fb0052854f133e960dd951525912392ffca94f08b99af58a198c48e7ccaf4b1bdef36d43c91418e1f8312f4a19e77

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\39f1b8ad3a7dfa7b_0

Filesize
2KB

MD5
80b4c869c0caa57fdce5eba82882ba55

SHA1
2bbcc5a7e4fa3d636c317a188c1540318439b7b7

SHA256
d9b7ab200d66f39ec69a7f267e10591df38a85f987ff791f98a0576273b5622e

SHA512
b8607b03840f2d665d14c8920326a27003e57475537795b9c192a956e2bb70c7115ca97f4146c841ea7a802f0a0f2721730844b2a72a8fe964eb03629db45150

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3ae4f727b095e0ec_0

Filesize
175KB

MD5
31a47899c140d20161de48bdabe453aa

SHA1
276e6a54d3c01764e3f06cf73eaccec76dc08bc4

SHA256
5811c21372f6052e501c99b19a6b7fa6cd4f37c952a3e51ea3db64b2a08aee5b

SHA512
fb13847b4c8121c4066fb36636ae1b34855a6c0b82d14f7645beb232d1f45b48fcf6e3e167c5b9cb3b1ecbaf56d4153e19aad08a8cd5aba5bf2e2c35289b4377

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3be6c89ea27c49f2_0

Filesize
1KB

MD5
18a211a061064f91dec5d4a1f7b6550e

SHA1
994934f0e627567636381ff2b914e26dab73020e

SHA256
c23c41eb1a11f7c0b006e7c8d006a78e02d5104a07f7b98ed00ceb9241e30193

SHA512
2a33a77b08b77790a7ccf859193072480d08bff09843765280800f745a513c3e3017afbe92801dfa735a551df2347536060c72513b57328bb27f3a3e140466cd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3c0976e826452b12_0

Filesize
1KB

MD5
9a2f4de00fb4d024ad4799d246c89c35

SHA1
35e162291d3ba55d73e289cffd78fd48adb43b31

SHA256
3bec9fdc843c3ae2a2cb18b9f2ab37e17460030686f45d87739329e9ea7e9755

SHA512
fd232c6de47633fdefbd4ab7be9512f3427687dc8e9101ada930e9f542fbc4973f39f33451c4612f4124a79e5ca4f6a7210ea90e44ad0d7ce0ff798f2c2b32d1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3ca0ccaa97caf731_0

Filesize
3KB

MD5
160edfa7938cb6de7b44cbed68f7c30d

SHA1
4deb25ff341e467b72a43006812e31801a85e95b

SHA256
ac1d611b9481f0b2717b8906852661545ca83f30ee13e4a940f774148f93e0f2

SHA512
3e39057bfc69e35603370a988df08d3b08fbb8fb094fe0f17f835406b3e6292b13ac7d87f57dc144beb70e564d9917c7f31f97536d30e3019a4e0ac50d960145

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3e757ea85c28335f_0

Filesize
1KB

MD5
80a3dc20846046e401a837e9e5f90b5c

SHA1
6ad8ad7c642938c45af260ebfa4b17337f663058

SHA256
da46cf86ae1e3013f5b4f7aa0cb7dad3578c73b7bef90712c420e1aecbfa4721

SHA512
aec11f54615ad4d755e1b90dc5d61f4254fb3cc43d80183f2ba1c66c0bbecd03b374ef3e11dd84249ddd57dabe0475e4ba053b71f5384bae7e5bea7e53ad753b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3f02c4494b1a18ff_0

Filesize
2KB

MD5
50796f342fefde0cae407ec489f69c5d

SHA1
b6aa6ae4842564f61cc5f39e1621a63a19b894e9

SHA256
03e7e6853ac407b807c79cea5ed83375d337e07a3f33d923ef41f511187574dd

SHA512
ebc7538abd6c821da2b5654fd77293981f8eb5ceb3666a17b5a8d32d3e9b3901edb88530140390cc21303e8193d1e8d6a7f996e10e20f310bf3b458a131562fb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3f8b23cc82f2b2e7_0

Filesize
8KB

MD5
1a28987ea5722c49c15f78cb83473ca9

SHA1
cdf502c971bf955320509c2828965f3ff37bfe08

SHA256
49655c67c52dfe32160681cd50dc94048849485d21361ec91a2d350edb1b9cf5

SHA512
177e00270734289fca3ca042dab64c7fd71f7445e0d79866e0fe1605c74db5a30c49b96ab0560ae6180883683277ca3b26b9ce7144d58d59678cdab631d96f56

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3fda9b84b07145ed_0

Filesize
1KB

MD5
0ab0e019315aa4d3525afc3322e5ac93

SHA1
9a0cc910578a00c1e60a3e1c48fa8c0a2bcda6e1

SHA256
5b44123399525f77b0c9f8fba020fa94a3523e6125f2b740047381a5b8ca6000

SHA512
b98769dbe28101b0e0a57a3b61d3580ce86d53af02247860102203bba13c0c5d03aa1fcb3d8346dde183cad3a35f6bf0b86f89ffda8a0f35c99a19a9ea59c8ac

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\427075385d94c9da_0

Filesize
3KB

MD5
d505e6d7b060671c45629b65d1923cac

SHA1
945786e2078a4e49911c9ac77faf94060c083b6d

SHA256
c59183dc028ab0b46c80f37a01d2af00a34ff904b30fd90b7268eff7a0834aed

SHA512
c9d9a05799db60efbe42b05916f82ebffa68fc767868d7c20b33ff03955c7c6a18e4cabd132d245dd9cf7064ec9137a7b2e6257bc175cca93ab28765ab54f0f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45a16ff6d0d9ab5f_0

Filesize
1KB

MD5
4bdf75a4868f9e56006c7eabb11f9b1d

SHA1
60c7e5607ca7e5a07e2c1d6b109d1b5d13bacf73

SHA256
ea2dfba00cfaf31c1d67863d612ca92dca3d1edaba2100b4714e4c502f2488ca

SHA512
a4c86cf49d1097dea355073ea9ce36e2c96c6c17fc3bd0b09f11d5d0d143017d6beef65d9aed0bc76dd1b562b97704fcd2f2fdc692a0cc270b50c2069c51f385

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45ef484a783af53f_0

Filesize
1KB

MD5
d1c73a6df36b7741973057fe70617bcf

SHA1
4f28bff9eee2f06bf3029d73db5c7aa0533670cf

SHA256
652d3857c2aa01bd8d1bd48b149172925d8a08105b0e2808a1c625e728051222

SHA512
9ecefed7c6b208a7f454962ed50d83e381596bb2a29ecde7f158fe11986ea10cb87b58c22c486de0657f37f69eb37a0d8caeb2c3c974bc661c3797ea3c829dcc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\47f1ad57edb8b6bf_0

Filesize
1KB

MD5
49ccbdc53679149f65ac16796b4e92c0

SHA1
93bef8160dd97521996b31c31f7d3ca2d821316c

SHA256
665c1a27df6db7640aba9e1e3cc0fe082c982abc0943f4f9eda4510c83b821d3

SHA512
a268ad639def92423c1ecd3823a5944337a06586d9e5c1435af09f4fe00b935262874f69206159a1fb14357a7703f48102e1efa3508a8ecbdf5b7509b751d69c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4851f064a3e29df2_0

Filesize
42KB

MD5
f6ce4e5f06f8666e46d29cd01b89af08

SHA1
fb0defb890193a8aada78bf2bea589949086feb6

SHA256
2a4a0360c1acc8ba8e203a9a31a064777b861b43e6c110e0df8152ad08acd489

SHA512
c1ed50bbc3627b77680c0484f87479dc66a1bd0c4518aacf82f38fb3db31f44f95d8ac53fa5f2cd40c03273a666f55fd8725f355be305205056593666eab269d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\48b1105b4c2874b5_0

Filesize
2KB

MD5
d55648fec56cd79ba4023c246b71dc7a

SHA1
73b1d8567b5d99112fc7566928526fbeb1af7f0a

SHA256
4e2f50b9bb9d5c2aaedac0797d5ad87a227beab385ba18cbe8444dddfa1cc4e7

SHA512
6cb2a2dba8dc9e16d171e05a5b7ad19c03ee1c78b12238c8c7824a9092cfd4e5dc6f3321359d6e38dcb6915a17099530692509637a99e75596a4d5877173eadb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\518f2571d7b63e30_0

Filesize
2KB

MD5
bd9146c83cdca2ed60f7df199cac94a5

SHA1
97d422c9519091df0cc797585c5ff9f6b497e970

SHA256
17bd46be8e7c5feacc012d981140e1dbfd221cae78d23735c090cfc582d305fc

SHA512
60265cf556ddfa7dc42433892849382c48e492b2b40c9778e4c349fdcc804013e6533a2124a3e5a90311c29372bfc351060e9dd8fef6575724039665ca4b532d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\53ac5abc87e80789_0

Filesize
3KB

MD5
506c1f846056f2fe85e30a6c5ba93e6f

SHA1
0af43dd1a110cadf26159f68e06012bdd13fbaaa

SHA256
c21495391094a934020d6ac10a9ed790b76239c65f4e563f9368b09af009eb3b

SHA512
0bdd9ea342e749aba0f60112ae6f8b31c54deb8a64a356036e9667ba5960c37e4f5b905699d05fad34602e95f4c4f9ebdb43c2ce94d0bbe6cd9098fa1e2bcde6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\552e9cab9e32a74c_0

Filesize
1KB

MD5
1b24a3bf8d5b019e430fad81afc8cf94

SHA1
a2f8b60fac5be0aa8d33c52224e21b603b4e8d72

SHA256
0812e5a0250de1410d6a90d8186cf5fa45a6612671c317ea0c84c5a69a91ea55

SHA512
df13f5f81bdef06310b72adb994fa3ed5822968bee5207b2aaffd09113100d392063eb1513a82258fd1c41ea842462762ee5d8c30e791b35cbe61423285978b0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\56858010a7af1199_0

Filesize
1KB

MD5
62973c721aee13d658276486f5c955e2

SHA1
d1196db3404a6dae112515ba499ec5e3a1f2e1a7

SHA256
c408effd5ce0d9330d309ebcfc171b21c99c3002b73a81cf01f3f9fcd91b3b16

SHA512
82187373046bd88a120a0f91c8af7aae9a79a0aaf0981c84ae4f88c5eb9e40bb5d2bce4eb16e75b4537f02c430b8a805a7ad70e123ff8ab9982c40a8688befe4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\580fd9376c2d4a3e_0

Filesize
9KB

MD5
436cb9f518ab3b2af7d708e8cfa7e01a

SHA1
b8a99b3d5e2be25e558f34a8699f69b027651e06

SHA256
22d5b4f93711c07f19f8058d36acd4dd49592964947590aa170663490db21eb6

SHA512
5d0e2b3313d3a2227ecac641f837f8798eeeb6772f87b43cb3a62c64ebc31128bf8dbf7fe28427d7b1df3ee59b12652909c0b6119ca2281f786859b4c18a3716

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5a994fe24b451732_0

Filesize
14KB

MD5
6af3f2f1f81f8367aab60baf59b10adb

SHA1
30da1d56c21e276c7b0fdb9fa86a1a6d36c727ca

SHA256
d83c46dcd5ead630aaa08a7f5b1d80beac9e64a74f62a91dafcb8eff499a81c1

SHA512
964e1a67e7ec5ad6419f18637110ef16da5b1e5e7dec5be8ae2b0fdaa864cf800cf4f19a299041799e741ecee23948d2d626113db25483d74f759d0d2daef61d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5b044bcecece9bfb_0

Filesize
3KB

MD5
21ea02d3354ff1b3e9c659fd67efeb92

SHA1
021253fecc4fec2110083494febb1c3764e27956

SHA256
c5ec81e612b16e8fabecf1224c25fed695769ca93f566f3a823fd1c603fe5015

SHA512
06f90b6e4916e3cbb5dda4df0e5645b6ef2d7fd2705ea2ee350ff647c5a743442f56ffc40d17f9c6b539425ae86833896b490a9daf635972be533f454203203d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5c7c2f497126e908_0

Filesize
1KB

MD5
dcb2b7a76001bea0526f5b6d0d8787c3

SHA1
34efaa220294e375aee3a5bb8e9347f5c44a4fd5

SHA256
acc5984bb18083afbda83fe4970025ee3473ebf8e9fa39489229ddc0b0645129

SHA512
946d785b7c16a059d5fef67bd6ee37235b73454f633503991ff7766d8c7446a549953c607403ba5990fadfaeb8821df1f4a8a8737c752bf0f8cdc8097bb4db0c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5d47285f80fa7ccc_0

Filesize
6KB

MD5
f816b69db5a6e7e7aeda2b2b82e255b5

SHA1
28e27d2f2a933386bf90fd671face54c61a66962

SHA256
d21dca1554d62b6a3a637cda31c568fd10da9c8fee8e3562474bc2a18ab2fa04

SHA512
8128b25f163002ffdbf36aa903a7ad81b152629cdf876939f01276dd8681ea182b1651ad449b09844832391e5b03d4688abd6c6ecc726556e7741dc49bacf281

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5df19512b232e76d_0

Filesize
1KB

MD5
846cc55f45dfbdddaf99fa18b1899579

SHA1
b9fbc5a05bd1f87bbe2a020aecf01c31142d8053

SHA256
0f8308aba89be7305d9df4109c2ff94b5e494c6a1ee94c83b915fbc8d042fe99

SHA512
d7d90a5a00075c7f933495a52b3ccb60154d64c9dbbfddfbb27dd62c20618b1a870349423bea40ab868e7ab75462e6a833badaa8d86c8d2a2572cb0e80ff7744

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\63339b740aefb3e7_0

Filesize
289KB

MD5
cc1552217f9e0eab3a50285079027fdc

SHA1
a9aa0bd514c498025a506ca83c63f3f4cbeacd8c

SHA256
e71dd57a9853e5da5bed6155363b1c4529d58273663a00d2f10fc33b345e86e7

SHA512
4a5f831cd8a845f004cd9edcdce5d63c22eff84af44f3bcf914f6754855ee558b661ae38306d7214aac3350db3b938045669deb4d448c8297c2c18da4fbe3691

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\65029c17e720c1c5_0

Filesize
1022B

MD5
6b76122520a9a8df047c3d478e4c20a5

SHA1
b1eaa49ce14039b4f2f5ebca452745d2e8f24953

SHA256
0bbeb6b7d2f5d432beb0b8c0913a65250ebfc3b73d0da53769e456adc53f571c

SHA512
0d255188f53134baa2af7037b7764fdde940268cf5e8469860d4267dea2e3799e8d8dd3d36568b718a7307eb0591b97936c29a4872d36c68df371805ccff94a4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6870cbb9284d54e2_0

Filesize
4KB

MD5
d4170b79bfb0dccb778910b5eed4e3c0

SHA1
60b2e86bfa08d87ad0f79f295133f9a4b1b3f332

SHA256
996028cc1ab3079a883c94d655cd435a833e6fd9c5b2040cddcd27a9a2ed5acf

SHA512
a2f9b57bff17a2b373b9e61b1bfbe0a15b0473a3cd47bec1d6bb730fd36f28441833df4b9d2850674ac2839ef68178f26ba4f784accc49f9fc509dd725a03223

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6b08cd0430bfd81b_0

Filesize
22KB

MD5
f49d5d6a69f7b949926e92395377b74f

SHA1
50d126a9fe37f3cacd5712ba1b1bae362bf503f5

SHA256
41bf00180f7e421b2191eb747bdda5719224fc26ff6c4906f89767b661a281e0

SHA512
b7641abae9d2ae96d3d244739b111974dcad2ed8d6e051dddf16332b8f08ca3372b4d3b7616f6c2e733f159649701df5ff363bae5a556536447898f71d081aff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6b335498d880125e_0

Filesize
1KB

MD5
7ea975135b12fa4a9bfbc307ff4c488d

SHA1
28933037cae8195b306468c2adccb9726978e874

SHA256
d15ed7075dec5da084e84367cc2612ce31e0805af26f4808161743173b4e9b76

SHA512
60b1727c9d88de39a161b7a4c307c9bae3b185d46cbd353557a77d894201c0e4b1016d9973df15989117a63e64c3f3e23f94186e312eda264c1c2ac687c5fc17

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6d3b0ad57bdf7db9_0

Filesize
1KB

MD5
0633dcddf7ea4e093b15cb391d155ffc

SHA1
2a233b77565b07240b880f9bb9cba4ed83d2a33f

SHA256
b6a6fe2e28758ac111999d1862e9de2aed3f82429982132214790846278f77ed

SHA512
43bfa4ab984f52b420a2582c61d825e92389be8740e3e9675f2fad7ba129acbac84012f3b907b7be85e1ac644e85e44f94bd5f3934b7f48433d1b2762edcdf36

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6fb34d3137ca4c7b_0

Filesize
269B

MD5
f930187e32a4f111f7c5ca5ada166fe0

SHA1
04ea0a3cfe6a1664eaceae8801951edeeeb55846

SHA256
12878cd78df5d9f16c932343d3d6581ddda1df5a11d5556252816d0c0912d4a3

SHA512
23849829e18d0c39e3835005c3566506db80b3670af9d8663dc2b0161f771d7475f1fed18453a48ad9242922b4de70308657986a01435d5a41bf53bff12130f4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74b88724f60b0383_0

Filesize
2KB

MD5
73d237a06d25ed8ca8edc14071aeb734

SHA1
04466309d876383ea944b73ec65f8df89d6a2ce9

SHA256
1d5bc5d1e8c37083e2554507f59dd457f2adcf19e99592e51afbdc5df10d518e

SHA512
5fa1a35b49352f9b2906ea8f1fa72927fb6cb627a8d6b39f99221fe82639e05ce74c43623db85cb0f899526eee81d90eac50c00a4772f8e1564e3013ea4ce6a5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\76f4dcb53c68ccf4_0

Filesize
2KB

MD5
389f707e3f9566853f872ed2cb6c935c

SHA1
9788703f644bef242a68ad6ab46cd3d736ae18e8

SHA256
eb9b7fa46a81691dabd0e76475464fba0213bc1219a58b4426f5cde4171f73a7

SHA512
3bd3478d57e621d76772eac4d53ebf97115adcbf4fea8c2e2bbc65990321b2ae93e3f58164e16d43c952e6fd282ff3a8f4fa0e4342d322abc4832e2c295b9273

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\794b4df9888a1693_0

Filesize
2KB

MD5
b7569218a03dc70fac77c75a1f8cb366

SHA1
d7860a54c6b49b50aee216cb2924ebd94483f7d0

SHA256
afef59bd638018ae70a2947a3b423c824f73cffe48e9849149f257e6dabe2434

SHA512
25475526353d81a6c7fea019ec7547befeef1cf7e76a78b4a116017dadfe38b41a25601813120484b0f516c523bc8c02d101aba91f1879e17443395af633d19b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7a66a1246c4f29f4_0

Filesize
12KB

MD5
1e4592c437442116e89754147adef83e

SHA1
0bc8b0fb5fbe5f19511e9f3364b71c0d61cd89d2

SHA256
1436d53b48a0bc049b861a122898176dbda5a0fe4bf4d589370264c85bbb9396

SHA512
d3619d8f0a29902b4f6b29059a4c85452b72cf426c1954d988d80db84f975243a815d900137b888897f78aec9a9bac4548ce318a5aa85e0ba1d8b063ffab681a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7b3576d02e8acf16_0

Filesize
4KB

MD5
c3b8111e51e23cea73a0306c4e0aa3db

SHA1
35580db09e68bb4c624511a110ed632b9f5bb925

SHA256
789a277bada772f487580961df947db4520aa130c8bb8a201b09955353ad5786

SHA512
f71bf3f38a0779c61434eabed8ae0080b35b21b2132021bacdb98f05e5520980d740da7219fc0a10842de3ad672bd71b28ebaccda6ac6da110bd9a3bd1599743

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7c3094013c730abf_0

Filesize
1KB

MD5
ffaee17096db5369dc9d7839f128cebd

SHA1
30666dd16b2c010c0f4adab00a5fd42d4f891f84

SHA256
0b8afbdf79ea38838fd666c6d3b8a04e2097f15bd8ef299b66c860407489c4bf

SHA512
e08c257f3f92515570ddc227e74f59bb7c5bd2f858911a89dbb79258ef9f2c13a1594c4ef22477f745b74a38a2ecbc3da4600dd33b23d1cc62ed84b9414b0f88

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7fe85d7249e8dc55_0

Filesize
1KB

MD5
bdb54675e4df2ec59b6e6c91c25bd28e

SHA1
93df4c28c92028820d9fd038ebfde0da799c8a54

SHA256
1131f88c1ad4cb0a551a9452b221f9b61ad0a75725588423a52fa650e8fb1e09

SHA512
505d16560bc2042cb72094cc2022f3807931a974f9a9731a87f6b5b687f751f038f886fb80b28cccc4abea0fe84c4bec051ccc56fc210aefab2bd9cd6b9ce751

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\846cea8a34f471ed_0

Filesize
19KB

MD5
860c1b4c38f1b47d5183b20015f3c76b

SHA1
124a263c857c18d9d1cb17d381db2104a81df312

SHA256
9d1ffbe7bf4ab93cabc6d779539208d8688b358e39a5aec81b7bffb48ed1aaac

SHA512
9dbd6018ea486a6a6793afd24c0739fbbe5fb14b497b8e1ca758df7933a57cb38ab4d5ec6d1f965140ce24c4586bd80d901cbfdc1673acab8280322f941b08d3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8648952d5ff5512a_0

Filesize
1KB

MD5
ea24aa13280720ccd7414fad6af3edd3

SHA1
9624e0a160ddcb3aea667787fa2ff9d39fa19480

SHA256
6788d4b4eca4b4a1ff2fb82b3f13f312a98b9a9c4d7f046654e6db629d3cb92f

SHA512
8eaff373ce8f699fc1c5f25824ea1c8457078c58709de022fe03058f39f26a7432bddea1453f507eb8913ceac87af2b16bc59979d80f049a2925d3b8f0bf7d25

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\869bf6c2b87eb6c4_0

Filesize
4KB

MD5
3769fb44eb906ad89f782be57deffa11

SHA1
7d30a1b74961f78e171e11236510f0759c3773b8

SHA256
b7008f252f559f31c94737c557b36343f4433dbf7c52f8cfe2199f4332e1e5df

SHA512
59f5782ef4235cfcf1c4d981e87b2dcb4bbea6d0f7fd6dcd0bd9ab6e550f3b97fe3c675383e8e6b6c314e193cba8b8d802f064b0699d68ec60a6ff0c098f2c0c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8984d1ae9837587f_0

Filesize
22KB

MD5
2947889a6162d065a2739cb00a1bac0c

SHA1
fa307e836394e44390b862894ba4d01849ca8f8a

SHA256
e08a1a3ffacd0955ccfb5884ce6a00dca739de081875ac929a86d02924cc4b44

SHA512
d15a0454573f780b6e363e4b5788bf30f56be4457e4be185961027eed028758f9eaa35a6f13c9bf842d9658f28f635af8f0bca3590ab526de3c1e3d910b78926

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8bf9a0dbc145b9e6_0

Filesize
1KB

MD5
e1f9d235e3010f167617b31f56e1147e

SHA1
898bd2cd87918aec1a3a512fa7fe9fa0e96993bb

SHA256
4560ef7aa1331efb8414c1e4d7114f03666c96b8c5ce576d60fd2a4a408c83ad

SHA512
9f7ea9e3651a98c254341f0bc5dcc5857fa6771ffb18c55369714bf7433aa46d34fe5478533be591b919c7a529ec868a6d8c1dfbe7892313900acebfcb3cf625

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8ee73a31bd0cce7d_0

Filesize
20KB

MD5
0b583b033c990713f5e985e213aeb8bc

SHA1
a7b3f7ba34776fd04ccce322a8db584973ea2f77

SHA256
a6ee801d5c77aed4e79d4a7e30e8703702c8eafc898697a459b9b05ec5838ace

SHA512
4151dbf020db2516fa38ff6eed31edc212ab98d3da7293c3410c2ac91e58102fbfc67043323981081dcd5caf9b96eecaa892a1ee7c6c24e77f36b74325f763a9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8ef8eb386747480d_0

Filesize
17KB

MD5
194bf3f26926c3eb77b62cec05c4613c

SHA1
b0468b88af5118ec000b86322d65b2b0b4ed1635

SHA256
eda262e0772c1cd5260c948f5d7374cff15a6082e4e844ce9cfa96cc6dd04ae5

SHA512
39240ddd0e5b1315fa744c8d96eca39afe62fc5b02020d34bb418f7cb793608eee01e6d1908019bd47251ec8f1cd5567e80f9c687eda5146d3b7f3447c9461bc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9412c8b664751f90_0

Filesize
2KB

MD5
1a2cdd69172c5a631392c6a07633e085

SHA1
11669b0e3034ec48810d2fd0a64c962a3960f057

SHA256
42b4a29eb460f329fbf438d01fa8b3b5183387d9da79e2c38dfe66aea6dcad0c

SHA512
0f09b27e3c55505419ba5323b98f860f99a69fbcd203e805a2c5a27268789945b654a66dced433fe7f911dd27716adf853a6b2e7ad67884231c75b7c294d4119

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\94b6594413ce6562_0

Filesize
3KB

MD5
9330ccdfffb31a9800f25a766d024760

SHA1
8adf9f398e9188c912358075e6db4aea9ebf6a31

SHA256
15dcaff940461499ccc4e45a95212e1ec225f2945161a80302f92225f1f2cd9e

SHA512
e24b1e6edd6c835ff569377ffaf77121e1501ae66bfe17f474672509f90dff9fd22acef2863c7e774070078af39864248965991eaa346e5eef171593073326a6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\951674a2601a33d9_0

Filesize
1KB

MD5
9bb81cb0fecf2c0cb0ee31ef513df582

SHA1
5e26ed932e38a976c7e9621ed56ad1936795e803

SHA256
d06f73b694cc89325255623d8519a95db6503bde92e014af991a5d01b133a2d3

SHA512
364e9103ac88945c1ca238fa4249ab71f6daae6ead185102eab50c15ab17b03c4b509fb14c94358eec25c09dc170bc2648cdc09df662fe36e26146c96b223d01

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9a93a5af80c0c9ac_0

Filesize
2KB

MD5
8bd5f9d27be628dce2246e64abcfce07

SHA1
367e4e2a90fa47676413f88984b038227b0fd1da

SHA256
554d3c3d550f87842f4ee6a63f7e83f1ef30b6ba764406803f2a0a232a2ba576

SHA512
01d739df1fc76ca12762bba34df55d120622654fa9f8246648e3b4b871fb995d9a66d39b5b3a3f52df66ac375a734bc3ef7834a0fdba150c95eecaf3eec3e885

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9c07b1b2a3e9b57a_0

Filesize
6KB

MD5
2a1b564e6991d639283c6c18135ec7a1

SHA1
0671f8ea71f02139023525a6cc57616efb97f32b

SHA256
765609fdf466cff21f00cf26613689b220454d003d12fe7965dd06f45cf43caa

SHA512
5a477167f26c8cb92317d15ff948556834fe03b7df0928453fe45ba36c98f4b52c1daaedd6ff070980fb32a39312a8c6aeb3414a5a6df0ad6229afc6e57a5c2b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9e9585b606ccbcd4_0

Filesize
8KB

MD5
3e5e37bda6d43d46315c72569d688023

SHA1
dbd58122deef14cc2c44d9ce294a782eab621f4c

SHA256
f7cb19c24f8eb2e31461e313e075c90ae35813c5e908182c0417b1b2b2d1e9d0

SHA512
0c4e304d1e3a5e7a22d6116013b76b8ba5daac5586e78b5fde560879de9415c7cdff81d24ae3830f435b970882cdbfa18b2ef43f4a302e39ca9a29ebeabfda3e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9f1220d60438aea8_0

Filesize
3KB

MD5
47a5df6007dac1a5696f27bd55ca3695

SHA1
956ffb2dcdc73735404863c5ee3f9058f4a4170c

SHA256
72bb7d9cb1d60ba63faf5de307e2ecdd3a770e5a70fbe72767a8cb2a4e800d97

SHA512
c468272f631c1d36637b3ef3ab952f3bd1bd5873e664ca0c01754028c28a28ee145a4ec8d42c764c9bfe7c9b236dd2d43264be3e181c2a8e691a8ea6477aefdb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9fb6524bd780e80c_0

Filesize
999B

MD5
741f231aabf71e3c1f5d26abb0b5f830

SHA1
5484d250706b445682e146196a29978be3efa286

SHA256
6e9b03f51b4e863147aa53cf0d66b8babfca9c46690896eef967b1c45257eb6f

SHA512
45e34b2a42504e5fa2aa08e25b3d827596c561f20c61b7efcbbddaf4d0c0e68b2ff18aa1ac3d73582c644f9429cbe9f749e0d03057b2a47e08e002b1ba6e61b9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a02df7c313f59d27_0

Filesize
2KB

MD5
deb9adab3115aa9e5b1c54ff59e9f795

SHA1
93aa24b30c98aae5d63dfc48d0f1b04e3e914eae

SHA256
07a610d8a8caffd940ffbc8ad07791bc119847a75834d6e38257ec7a255b8c67

SHA512
7f268422e64e4bbd6a746d5555c5f6308342d3d6417a4e911dee2384ecc5239a46b5a1f4bd690b1c4ed151cf3c06bfe3f0c26508ecb438fde335ba27b2311e4c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a05b0db8f454e7dc_0

Filesize
1KB

MD5
26fe7f04cafab985e88ae8737dbc1389

SHA1
0e80ef82bf303d1ec43961f916edbc5c546f5e51

SHA256
294733d6d38a49c3fdea9706ab150d0d82d3296c44439a9c169bff5d4314b254

SHA512
5f6a6ed23581df79ac2217f0115f4b7c40e09d5604faad0d400850d1bcfc75ff0ac65576070c69a436d5c5e5fdd7fdf4f06a18c1202ce69f9efb146e953a4d06

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a09f6271ad0c4092_0

Filesize
47KB

MD5
5c27c7ce275a86d892ba32cd30385039

SHA1
f5c914cbe3f66c56f2b76eea76139fb0d5be7ec0

SHA256
e5455dd26dd5d43c2e82ec2aff0a3575e4e48feb997c3e1c2ec27799511d79c3

SHA512
0577c6ed6b4c4624855d02c9ab204f9e534331f83b441ab82cbbcfcb66db722997d72e3de6de9156fe01947a18fea65a256cbc6323607bb24d018959a9015c29

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a267b7c21d8b8c9c_0

Filesize
13KB

MD5
2d5569c9dca3a6412de7b5770f805c6b

SHA1
b920cf8b791670304e3a8ac84c93c71aea741987

SHA256
a5be83f98ca1d3e71f7a159a745b50214da1d608d704851194d6ae251e0e05b2

SHA512
8c425d23eb785e70302914f13d1810d12bc1448fc47c86c36635539c35e1dee58eb39909179cc81e6e6230e51b993b1b0e53192474bf76e9a929e94fd9d06de8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a3beb452e1663a8d_0

Filesize
1KB

MD5
9e70adb5199e703804035d4bbcf005f6

SHA1
8c28a9add25ca017420eae49279b345fdfa19437

SHA256
93559834a0f889dabe7efb614d904c8eb1a4a70850e6d34a0b6ccd1a66c2e780

SHA512
935ae311f41882e7eb5c89c9808665cadf3d2706932d84273ce88de8599a552d78413a96581f712258ac9c2afded86615f74129a45fa4f30eba2f97f5bcad1b7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a6537dab24e365f9_0

Filesize
4KB

MD5
607c576471c52bee4676eb8ff717423e

SHA1
4de4cdf411db91f3ad895d508506719d29563a83

SHA256
e4b512fddc37b70842f61afde16439342604ae8adeb606850e74458eb08f1591

SHA512
d110f941499dbbfbacc7d39e5ebadd88dd89089112223812d565d93bd45a20866ad724f7fad6f88d464f66d121daf6d2099759fdfcc444490cbe0258528a775e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a67769912ffcf13f_0

Filesize
12KB

MD5
266bba99bd764d5c2ecb79fe457b0efc

SHA1
843d14f383af23dfc0a7305547f8a71446aa54e3

SHA256
d0fc536b3e02e6d6f3e0e41339628810ec0aaa2372abff45755ba5c38e8a9b5c

SHA512
e6f4cbaac60df974c7a7cde575a0da9d5bfe93f764fe2de6a4884d57e914544f96d236fe0e4a44125274dcb9470e3e30878e692e3c15eed1be61e042ba2c8040

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\aa61758ad53dced9_0

Filesize
1KB

MD5
e79337aa16341e425093d20a0af3d2b7

SHA1
366a0a825ac6358d0020989f5ddacc02a38d3170

SHA256
0dcf48ace48f24b421b455a1787991039d70e5432805d64057ce9b33cd6afd84

SHA512
9f2bffdf1b7967c1a52ee8b0724c16b4464095a3e9950d0d882e99543e4a98ecfa15740c89f371f78cf4acd060845bf54f3ac536db197e6eee92c29032e205d1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ae6938c53190427e_0

Filesize
1KB

MD5
6091bc73ce97a560e4f823f1d72a4018

SHA1
caf49851fba340fcdde222bf0b52ee4c413f51b2

SHA256
f7846ff3032b56f999e4adc697909409d87588bd43992618600a6bc57c0ff5a2

SHA512
c6d40f52fc38ea6c2e4892c57fbffb7f37f803b93bf285ff3cd890b19344029d2af7e082f731cad6fece8cca95944ee6a5b799b560ee6d9e0f6a819a56e44ee9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\af2cfcaf6d9b18bc_0

Filesize
3KB

MD5
6a155533e2480f148fba538d0e0cd48f

SHA1
e4c88a4eea2664b8d4c8e775a56f83fed0cc7c80

SHA256
f5dd3671003f717336a6ad9228746ce1cdc99f2b97cb97dfd6c224dfb6cb07dc

SHA512
eb4368d4556aa6377471030e8d41f464d39137cd61e38c0723e31335bf3c6d7fd0d8fef1ab2a044577f564122e2fcd9c4f63823a7c02e50fdb2a113c9cfcbd60

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\af8994acf5cbd6c9_0

Filesize
5KB

MD5
30491e7d5b64554631e04132f733b9de

SHA1
d2fdccf9865b1dfaf5560b32be2dc13488c527a6

SHA256
d175dad9e09357fcfb555440f52ce7bd31f1e33534ec734ce8cb5026a2a96a74

SHA512
8aa54cd9c5bed5f972fba99f0376bfd7b90f55e3200572b9db2acaf87511339c1d1ef2a9e08a57e086bcbafc062398a80bee71118463d81f609930ce5f201f0c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b0ee9f1655dc1655_0

Filesize
1KB

MD5
3d4a9dd6eadc3b6a644db1c60f25a2a3

SHA1
1bb17a3c73c80e2b8c0e601b8c4bb28b359c15a2

SHA256
c220f38af04a150191a072f162cb5e57367f88f9909e492198605da5402b2935

SHA512
8a8733b6dff5fb2f6869d7690395023a4d1d91aeadd2c9e62f2519798ce5b577a13e5adbdbba1a780cfeccfca4d9d5c2d8939594a72d4dee8765843d6f86257b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b3af26fdb0a014ec_0

Filesize
1KB

MD5
4fe3c9d39a3729fff6511b0f1b027b99

SHA1
1b8663d8e7c2d8cd7f0376c48b07f985c20cc8c6

SHA256
6fda49a4489215fb9db723516e341e4bc546a7724ed7844c8427657a6dc913c9

SHA512
1d07724d20076c05f2ce221878afa50ded7cd9bd8937e3cb2cfae43c1332ce21210578f903f8878d55f5b315f3e5a9b969aa0c5a1d348711518a64127bd25f0f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b9c1eb04784ce0c1_0

Filesize
3KB

MD5
d224add8aec9cf60d570555a68754286

SHA1
02419e7958da1266536bfa50ec5862f370b8e683

SHA256
cdc554c8b4ab45ca6b457cd778c138237ba9d0d4fb5f54848fc9af1bd8199f91

SHA512
fbc624a8143a240c69f21b0b0c7139d54e7ac17516460a91957c481bc8b36364df3db62efd9fd18403a71803c09c21b1593a8417fa1581376e1adb4f19a37ec1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ba872977e7eafed0_0

Filesize
1KB

MD5
212208a0f95f880df1540f909f0d0452

SHA1
0450966f0cf27d0be91cf005e0005708074d6554

SHA256
4d97a9a51a6daabc6a6c72eb4a1a966a6809de304c4172cf100d5fca52b4136e

SHA512
04210eda33de6f778f31a27b0b58d606982a147b62e01aa7396a939f0c9becbda2cb831c08d9e9ead54433be9f7df5978b1575dea8a1f4c3c2b25e0623bc590e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bf3dde9e4182dd73_0

Filesize
1KB

MD5
180d21287a3cd3b1b648a7a679fb1253

SHA1
8f41a42c4c178d2e4bc1b7b482fc36cbf0204d0c

SHA256
cca02262de3926b2b438b566fa5ea9788e82fa135cf12ec4d78b3aa114931fd7

SHA512
d18147d89f9f2166fbb38dc540742ff00c7bbb7d3b86169516432bbafa73d8399b41ab092b5d5c18ec25125eb2a7f61425569e8d3265de4e83434da86e903dd1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bfd9b5c29c5c8524_0

Filesize
1KB

MD5
bae95cc3c62bf2a1fd3cd9ca2cfcdf1c

SHA1
aadee8fb8a3fd6e6ea26f87c8f2e2688534be29b

SHA256
66d8dc805f9b618f17351fc4b15aeec9bdbb89d5f128438837aa4f37b1578159

SHA512
afbd3d4efccf9ba3ccc5d64a89ce1d02f4d1191184d90d72d1fa811191dbfb0af54438f3c96c3b78b1602c4807ab8931ad6407a66584b7b3475ef2844e22cc31

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c117a477b2bc5c30_0

Filesize
3KB

MD5
9e50ce5859c571ae84337b29ac34e960

SHA1
cbbef062c8feaf58113423ef95e3f9315d36ad90

SHA256
ed4453b9f542493cab379614df9115c1e595d08697499b5e7ac28f7dae422a33

SHA512
64a38b12c5d774e869d354195e6eef4b88ea6ea6f662dee552cd4881c6c11b8ea339eebaae33d5d93fd48bc13e38fedec621ccb1a09ff6f15dd80310c9fb9a38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c373ad3ac985a3c8_0

Filesize
28KB

MD5
1a4218bed2b2d6f86701543a9f921d91

SHA1
77fa94afbce3aacd8f6ec0c9e4a8c65b8156165b

SHA256
b0842dde2394ffc6aed3c4b2e42e5ee1e48266069b67403409dc4a420af63985

SHA512
dea3ce0cec8a63915d1b846eb08323501672546b3aab020723e417d17b6ac7f0fbf0a165cfb3943c9d6f57ea55ebe49e2fc4a351482990e914b44a9471139b92

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c4f2da4e4b4dba36_0

Filesize
34KB

MD5
25d1c971197728f588b6f2f44dc86ab4

SHA1
78cc68944c6c51abfcf7d43b5b5ce14ddc7c06c3

SHA256
01b45c94db849452562d8fe0af6a91c858eca00b80bd4f1c3697b4c49fe64c5c

SHA512
314e3d3232c0efc41d3ec014bf8eb49b0a131ff65b93366843e5d9d0f0b0e86d29fda35ac82f0473a091bf4a42c68ffad323680d39e2b6d73067a7684a22c048

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ca892b448ce010ff_0

Filesize
35KB

MD5
0204af5b9c502fd083ce5223e8eca853

SHA1
90328bab0149b05807cd7c9adeba4fd3521a4ade

SHA256
e467ffc37b6f4abd5ebb0c8f2fa08d68a5b06012a5940d78b92734f4a4545b36

SHA512
025780c3befcaa29ab499aa3ebcdaa4f778a72cd2ed4b452c2a20e8f5a660a855b30490d5d3aa674fdc723cdf8231a5f05237ae10ff8e53ccea08ed5b23b3a25

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cb307b4160083434_0

Filesize
11KB

MD5
e82bd88f2a850afcb920d2bf6db53dc5

SHA1
12cde520245bb2e7f9f76610114f9abad06936fc

SHA256
0e448304e5a832de795d411044d3536f9294a02474a57675f3fb358b610764d3

SHA512
e85bc7effb33b28e062e2b861264893f263d497a2172cf647c7d867fb7ad2ead9a5c16fabda111858257cdafe6a5bf4cabd42a9c734f9c7da6e9ff1933feb8ad

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cc2f0fedd3e9608a_0

Filesize
1KB

MD5
37ab126fb2fdefdda0fda0af8dc711d2

SHA1
e23fbc3436c351d6a33544c9c2678e7a55bf9df7

SHA256
0bdf5acc74b3c77d0c3014d830b3bf66c119c312261bad7fcef036f99e8bfff7

SHA512
dbf4fb6440ff6299f306c656fa9ebe8e54371910945afae07f14b0d211c8b9e91ea5bbd2d85e56889996835b8a454b1bd08a6dc54df4feb44e858276eade3124

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cd42ef20f59b497b_0

Filesize
146KB

MD5
9d4c59df4c43d74b0c2478d46eef8664

SHA1
d3d16462da5cfb49e83aa043b9dfb269a68ab57a

SHA256
501b6d24ee4b3906bd7c8712008625e7ad9d94fc59ebb35033703ecb6e436b0d

SHA512
96272e5b121b75f421e9e2c6395bb9e56875d9ce765141f8a1835779f831f60281b4e696a8caa61a76ff0124852775842ae22e09d11ba81bef619d75cc34d7df

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cf4436542c566b96_0

Filesize
5KB

MD5
175894e5aec020a510e3d17b05b5dfc0

SHA1
6612a8ff6fa4eaed0b15892cad559f34bf0b22ef

SHA256
2571081d8c0b7a1cfa9215f05251e36f4d3806d5bef7ff350ed76ba28b713cbb

SHA512
af2de380a184f085fb95c4dfa0ef2b1fe9961ab7bd4794ceda8564b323cdc71268769688b7afb18bfbc8e04d83cd6086df7e66a72e2c953bf19fdee136428ccd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d00019f29c31fea5_0

Filesize
3KB

MD5
811359c3501173d5e2fcc23be253bf0e

SHA1
74c627ad4ac5237a1bacfc246d23b6e2f84506c3

SHA256
582cd6fb6e09f77e385f804feacc3909bf1766f56742f5f09f72370003b54e49

SHA512
146788009107838b27f886f979cb05a696a1333431c3415bac3ca312a4a279bfc259b9157dbc6d40a2e537357222d8acd374bfcd037c4709f2caa2132e70cfb0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d1c9b160fc1bfcd7_0

Filesize
1KB

MD5
ed41f243f7bbed448ca9a304ecbcfbae

SHA1
f1c4ab1254f5fde5803f2764e660f3c713ae855f

SHA256
0abc37e2d2fd35cfef79566fcefb542068537afe7fcda4112b6209617456de93

SHA512
e86f2055fe1d8baf73bdb1e2d61049f18049bf8ec381d8db1ba2e0cdb068640124b34830168a2e06da9d13e4d5cee2ff44aae58765968d61402c98d5f4a5c50d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d1d5771f5974fe10_0

Filesize
262B

MD5
f0cff6dc4da1f0ceef0016ef0003f2a5

SHA1
70b37f31441d1b6582410a47c8e3c684331cf9c3

SHA256
9a7df4b39a324992c1a3b2523363daf5f8eb33111627d852bf7823312573d627

SHA512
6fee7505035796610f7103c53293a6cb7bd8a2636b7cd0dcf622db73146ee4cdcf60293442915e14bd7fa1d45b007d4410c1f3d8930e27d780f91926bf4dfb53

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d33f2dcf753b7457_0

Filesize
2KB

MD5
16304661266544d540999ab461f48c65

SHA1
14f94534777d0f61fd2ae4801e86d06cdc9abb03

SHA256
03420e5f05451ad7e8e70ca6941c3486b9452f9e972223e607a33ade7aaae379

SHA512
655c9144d17515e512d09cf66231387b47466a2d6da52371df0b48ff0c90f123812c9c3c0c1999d1c65931e2c23c3e01caa3c8dc60958f7495f872244fb2041c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d37cb16ef5eb861d_0

Filesize
26KB

MD5
aaa806c63090ca7fc155a33c78188faa

SHA1
c4a34c639d9fc9328cb5dfc5997467841f2da84f

SHA256
cd8338941979ab74f5ad76e4003361e82614b798a5579b244168a80728c1f7fa

SHA512
5ece323831ece206d465c0ea1d1ebb9dcf02d9d1bcd16cd5a80fed75466f52c21435dd3b307e2517d20f0f1d925c04ef086755d95629bd130aa884ee90677fcb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d3dbb3008455b523_0

Filesize
262B

MD5
f2a12d9b581b87de2bb8b2c67ed0a87a

SHA1
1719ec93d951b1d377647e1067eb9844de36b0b0

SHA256
dc637141e2e07224de1eae7c627a0c548c1ea059a78051a294909b836b557341

SHA512
f71954ed97b65b79ca0a9bb90d7f6c9997ed1ecea25c72bb3b317a0f0c43933e28893fc1fdba8c8e4455ff029bc0cdbc7599eb79301340b8df819cb4863d781e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d5667bf87cc6b1b8_0

Filesize
1KB

MD5
86c093a3e862f0a56a03a18e1fb62f5f

SHA1
c2e815b9df5f67d2a6f47f26bff863d2841c6f3e

SHA256
492e69a46e1a993e5782c47d8e67547a61240b39de5cded128383a01d77b1170

SHA512
cb9922d31912891e4e7982a24a2044d9d7462c61608f85958b1b0b3048f71a7b41d16ac0422445186ee37ccd52b2250ae65469eb3a29a0083b38374207d714df

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d6ee81079c1cbac4_0

Filesize
2KB

MD5
f8dacc058619195b2a98e74bee79bcb4

SHA1
538b98b050a637dfdef1643bb24c02705d2f630e

SHA256
bc5716372f0591c83ceb9f01d33a7ef3962d1ad12edaf6dfc85d0cdfb9edc2fe

SHA512
ac60eadd3a9705e4d5d46077b3273a66420c40cefd05c4925e2d7018723f86065afba537e81926af593192bfc3245590c7f5b1ed4a89f915267e37ed46cf1129

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d7a29efad91a1117_0

Filesize
262B

MD5
9c3dc2251544594a8e45d5239354f183

SHA1
41e568d9b907507b5d78ffa4a3859ac3ca69392a

SHA256
9d3cf03ca91e45a015f98a0d46694e02971f8e27e1467797832df024e6cc0d57

SHA512
0911d063fd0db6ee6bd6e0edb4ee58bb21f7067503d87663882dbb7c1ee00d8e039ed678b95753f4bf9bd74652156465670f9893b47698da31cbdb8a1bd7bc28

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\daea348421cbc209_0

Filesize
3KB

MD5
bf3aac23f08450fc3efaaecd03888b02

SHA1
7ad349ae99de49fe992d5dc65e8687636365fa35

SHA256
657504a8a22c7c39d19a103b63fbdafcb261739f2b73975e9ba103e55614be6a

SHA512
a7aaaf2492065c894ccb336508b6726a29d9ef2a19cccf4ac3e1e5f3e66dd49f06a6d3c53c8ba52f45ffac1f0ffd52e322413b40085c44d96b3b492867240aea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\dd8e97b58d81706c_0

Filesize
1KB

MD5
fd28c2aa58711102e53d830e9d2ba228

SHA1
268fb39b4b6fbd55deb7ea0983904282a6dabae3

SHA256
5b83fc34da66b819c30f065b2d0c35c4d1a1302ed2dccd9b6dddb2483857b1d0

SHA512
8bd6aa4c053b27509a2850547e622019a9f1c97171408edc695517a0654ff5645aa60a885ae048c1dd8a34a79c45cd8e94565a52b28976029e8f505801adc142

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\df9da550ea6d3003_0

Filesize
1KB

MD5
54e1e95695debee30f9bbe5bfcb40d6d

SHA1
8e8935d2904a76524cd150be13d1edbf60b55dd5

SHA256
4a1e3967b7888e796348a059d60487727dd1e7cedb7dcea344fbd30f4859886d

SHA512
9597c7dc602b5bd32fb01f4dd7dfb95e89400bffb538b05f54703720ea22608c21ebf9200f21a54834b9d6f896aeeb2ba13cfd937f31e8ffc9a90cdac845c15c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\dfa37c3bce11c64f_0

Filesize
3KB

MD5
bc71e01635023431d44d04f3cc08fd65

SHA1
049eb59c41ccdd6e1728317a7c663fcd843bfbee

SHA256
09987b14deb5ee9adb39e2bd31bb480113d254f138cca972b57e3e7078985435

SHA512
cf667721705b0ab23860cafb30b41f01b3c80045f937d597273b890d20a21e4ca58737440a7f7e2b3f292e3d4f1dc816a5bb67ddb16a421b76eeddbb02237af3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e504183595893c5c_0

Filesize
4KB

MD5
1fc8f971718a7a03e8e39d34e9b9f22f

SHA1
32adb01b22848cfb6bbdc2e28cc9be92e9a69376

SHA256
7d61a3fcf256862efddf7016e5ee375e73bb3836960982b5d022aec68dea280f

SHA512
ea2cc77ca1e850656faa969f61a6370a7bc9e85251d424f3b8b2dba40db750fccc21d50829a6fea46ca925d87086b2b1aaf3766f64b2c1436d588c9278947d7c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e55f0a6d1b533c66_0

Filesize
2KB

MD5
b268d919997cfb3d5946b56d877a94ff

SHA1
42e3656aef72b2e716062a41d9ba7c71d7b7f403

SHA256
db9ff03317e99b40761d2b08c7853ff9b9429a2134d22c336eddbde70a2fe71b

SHA512
1940df3eaddd27eb97f2d97dbc1a51908f035dd7c033f99e9e1959a36cbbf9f5bbbf721699d268b5d2798ff8cf6791262639e15617a0b3f0e095b1a4ec930b66

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e66621373481b81f_0

Filesize
2KB

MD5
92137cd8cf418e2d0d9510d4ce316cd4

SHA1
da94382e46c602b892e815beff3a49ff209aa202

SHA256
717fdf8006d45cb081a73e29552ab3b6eba8758edf63d3cb8cce502d3a6fdab9

SHA512
b6559cf5fc112d450878d913cc564b6d547a345274c58f3fd2c1a2ff3067201803f82bcf2c248e371ca48eee1ea056613113d2b3b463601f2a1fee99dd3e3999

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e68b9e0f9efa1fa9_0

Filesize
75KB

MD5
bde84eb0e794fb4bae481f7cd52916fe

SHA1
e8b44c25f477c44658018ccd5a1401cb7cefcf77

SHA256
e85733c419663744825239ab2ddc3d710c411d3c2ae6b4a40a6fbadc662edbc7

SHA512
46cd049ad1c1f8fbebac30dd588174d0f122c751b87c1b27da4b95a615ac39b0bab91af501e5a6bf6e311e87ef6b92050d75fcad53a79af30255ffad0da3382a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e88c26082cc48958_0

Filesize
2KB

MD5
899990659160de444360a0bcb233fa89

SHA1
16cc5db01067e13deb5f17c4aafec1c99941d726

SHA256
1d354057a02fe3380c8f0ea81195208a91f29107d4af3f0fd034090c2966946f

SHA512
db1fe8d1eac3c60c0bc681818ec3a6d0e6281b9cb8df0e8cfb7601e865c48bdc8c04d57f861ed0d875aaddb0e6c921230c1301c80ca6dc9de95870c6e5ab283a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e8f6640eef188435_0

Filesize
3KB

MD5
37dcd18034847db0c171c9cbf54b6117

SHA1
a421251ace5cf71f251e417171cac54a4d266074

SHA256
5c2a947e1a823bda4f660027a3cbfe6cfb13b14a6d32a88eac443272c50b88f2

SHA512
ef28a0f1affcbf4b687d6329f076473c65c33d9b82df953c9b062371091adfe3a6cc4d857a98a9c870146856b63935019e5fe4b59b3f733837205947491f5ddb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\eb12dd8ff892f2cb_0

Filesize
24KB

MD5
e9f2d87c3c7e16447642c4e4051380a9

SHA1
73fa25ad1fddaec62d1f9d1d533bcbed11a06751

SHA256
229ebb80d43579d55576f2fee24942bf1c514f435c3fe950350ca55a57d99f56

SHA512
5d76754ee20a38ee6c29899e36c4157709b32244ecb7459a0ce0d2962a03669645bae188bae5df8a5c9dc247899a736463c52c83e62aa2d5fd14dd27b0cf1e49

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\edb3b6840a8ddc0a_0

Filesize
7KB

MD5
e9471d9dee176d76a0f6eeb9f0e64f7b

SHA1
8561b422123a919626c878594fe3760d7456bc03

SHA256
37e055d9c94c1f195536f54979255b793d87be86571b3d38de406b01234b5da9

SHA512
c4d846d48695b22bc36ff2c3ce0b4676b27e5d292591e07f2e3f341aa38adaf73c585f7a192674162fceb8d03f4e1314eb43d9e3f8edac76ab773fd52224bb2c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f27b37247deb0d3b_0

Filesize
2KB

MD5
831b6462b7809ae733347496245923cc

SHA1
f47bda53befd5d8de12b8c790e715eafcc88c59c

SHA256
c85f5badc7bd5b9b41f60107d36501aa54eef941baf51ff849449e3bed273c28

SHA512
e50af865426f5f2b270516dab51bd853d045703188a140e9412c86e3a44f2dd7c9a43a3dcb67aea63f6686beb668c1da7fcbeb469a2458a4d6d4176f96884f0b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f2e4bbad99a372cc_0

Filesize
2KB

MD5
0551ce7196b29cbea0aa5899376a4bad

SHA1
4a666f45e3211474353296b6f0eaf14830f85f1f

SHA256
3d0c394122a8569d4270f903df1ec83065977eceedb800caa23cfe448132f865

SHA512
043a754c01856a0d160c6e96ee38852d48d741b47abf649bc6ac0f41aff25122612742f76637ac1822783aa04b1095ae7b267647be4711ca860f5e03e2e724c7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f89251fac2b69325_0

Filesize
3KB

MD5
3cf57db9afc74654858745f13e2b0489

SHA1
40e8ff01596a87c08646a63267334041c7e5c63f

SHA256
5425e7a567d840b83bb232ba4e43217a3cd8e2a0d6ba73360aaf4fd6001f4f6c

SHA512
b4e5cac11d60a34d907f20545dda43d265f1b8648527678b7eb0ffcb1c59e7421da6139a6f9968aefb6fb1fd55f6937b910102582f0e31035565e5ec67b60246

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\fad43496817469ba_0

Filesize
1KB

MD5
365b08efd3e5641db20f56cf73f98eec

SHA1
dd3fbd17ca39c7d74a3684e6a38ca75aff39642b

SHA256
fad417fb2b66aeb62d5c281c1f7d27eba1fce71d3febe3a00d52729a25067ff8

SHA512
276150d54511ce2ae105a764ec2ea00c10be151fc19e36a29a923fe4504b730483818e3612d496e0d5bfff980b9ae64a22640a6f4a13748182d3efdcc273e9a2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\fed9f78ac13c3c36_0

Filesize
2KB

MD5
be37a63587f1a56b12d8ad18516e45b4

SHA1
ca88f2e62d49f4d3e702c76801a4aed78a425bbe

SHA256
92c62b1e1b2cba32878c81e098e4f1d8f25ef46f81d1448d23e97a1dddc60663

SHA512
978005c1bac1aaaa262740bef420ea2ef6365c3f2b990a2e72fe0d6e815585eaa1a25a03ba88fb72b26e841d5a618dff6570801a770207c527e9e4644c9e5245

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
6KB

MD5
bd8ca6708439f17fb1186d2e4cfcaf61

SHA1
1ccf22e0f50ad6d555825770e2e3fc3b37fdb0a2

SHA256
f55da79b565431e86c795b9a1b66680c4de377581205e02a438e539c1308e6c7

SHA512
2926c1cbd029759ef24a3dda3f0e8ae3695eb98e000661e5f6fa0101c787b9fcaa81222aade68e6449fcb13e9cffd91616687718682d5a3895b206acf0282b9d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
960B

MD5
8f2ac79d2f4951f985126f6ae6c2ed12

SHA1
9db5b06c6bfb97c8fd0956236c3a5cc789d0e1ef

SHA256
c095c1b6c4e7eb8cf7cc0251c992fd8232800893988f545d941d47e540fe82d1

SHA512
a0d410de6eb63894590c2a79fd85047f321e7c0271f047b6069953e0eff07ac5d32fa20c3c5df7352c898a00414bb5a3b1d3c4dd9a23abcd7d6992931acdb374

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
6KB

MD5
ec045fb8ded895d6a55920e1ae77a925

SHA1
186960f138961377b87009f66ad647de3ee98e7b

SHA256
55ee9ec849a25bed6ffa9b73f7e4030494c5728366409d659b348247cd22662e

SHA512
830ee85a5e5c099776c323d15df14b45b6bf7d58fb07b84a172e25aa6be25aced7d54de3f3259ffb425efbac15eab0cafcd66be508948cd828d15309b4897c05

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
01a57fc7c4b4584603c5b7e2749dad1b

SHA1
0772ffee30a58eb1045ea5ba8c300ced46bc5031

SHA256
2decda26771fcedd84dd019e5b34e623c6a5b95050020b8550921bdcab63912a

SHA512
2543bf735987427a9a656f6a3c0f0d797765550e13a6eab5761981f7569c0ac3c1a1cae963006d9fadc6618a697bc496c7ee4e3538915dff99dc9f44a7c8d861

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
8c94292c773d92b9a9e1cb035360813d

SHA1
f098f3f0e94a5a83703e38a7eaa3fa1d47e01114

SHA256
1e0d9e5c57d087c74a96046e45cd7578c8c300e878f6944f37c94e1272356d50

SHA512
b66b73446f833c8eb9558e0f218df8fdb987fab79ece4d0ab2c248bb6f4e1e6332b1c117b8ab22ff4995581bf7d720d849068c8c07def937e3e5528526d96638

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
6KB

MD5
3d198b14182d41a63ef62fe6c2eb39a8

SHA1
0d121d5b1238749d759f867a3e8e14f4cc650839

SHA256
dba0363d5299c988866a65a8b2465df7e1ae89de8b4496272d668e8034ac0f22

SHA512
e5d99bbf0b4c39bd77b0ec9e8b4f54b77f801bb24bd2698b7ca6711a4c2bb9b6f4a8283e5d6b2e067c62160034a18e59c087f839eecdf8e44bc14c8b582477a2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
4e36b43d27ebe700bbacd4885094b72b

SHA1
e91214fa0062af15f78e2f278bfe3fbc29179804

SHA256
fa240e6900356873aab829d5748e6ea1c31b993ae8b97bd92c4f4964b85c981a

SHA512
e24905efe515e4050e09a6feca4a0164a83466a704babe8f6632735abdafa765a342724643902b321e9c05b8ded4b75871f8c3e388cb59dc676be43bf34d53bf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
7KB

MD5
967227d8f6c971a3feb55e6915c955f0

SHA1
c04db1fb5c14de2305778ef15381d36e134f3be6

SHA256
952262e3aa1a990dd5e2805520601388483193b370e6c7b70d6228d9e4f98a53

SHA512
a8b771598d34e512cfe241d5d7729f5f41c0df868de5156b4a486a64438e115fa34e8574dd827cd4d052011be521e144bf96482534408d5ca9406e88bfb737fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
ab2fa96687e9e9ec000e1afa3056cec8

SHA1
0f3fb587dd938eb92a358d68461f5bdc347d581b

SHA256
baf722a3df066d617bad13a2bd792464c210c62369027fdc509bfbbe62c1fd02

SHA512
4e9bb93b4383a67f06644a862eed33496f8ed2a03ededfe6587ed2f5fdade7b83a28185b43dd768a92f4b1e760a6db9e60122d77887f59bdc6cdf11c771dbecf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
f111d18df7c791cddca6a3fd31218d72

SHA1
68ebcd783cf5d55d23c29461cdc2c71c73107551

SHA256
da4be6a4cda28e833589d28e8515ff88d0355d896aa911ada06b044ffd0bd664

SHA512
49a43f641bbb30b87e80d43002b8238646e2d789c01422403c12f000f49a1cd6f8a3c23c865900a6cb2c9b5f0e6339b2541604c7f486757c0342d04271daf3bc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
6KB

MD5
57c73534785ec2e429056b189ad80091

SHA1
7f21d37ae48ffd1e27161c8372ee4ef65d3d0dd9

SHA256
1d5e000da345ab29a64dc2b859d9acec3d5ef628c7310f6d0d0d8e6d2117143f

SHA512
17c024360bbdc5453b9ee99fdf9ec17576fe4048a97c55cc7169b8357cb878a9fdbfd63dafb001c75cd561885f520c600d8e6ad41ecd1c449d680c00e33179c6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
256f79031bb20bd7f32211b81ba2cae0

SHA1
f0cdc09d7c65432eb0947a55c325db660fba093c

SHA256
10a73740c04abb901b9590df181dc53e2a71b4ccdfdba9a966e8bf0a78fcb3cd

SHA512
2328e40e6fc2e035552154561be9700e30b6593e0f99610c38b9a5fc9575cfeda5969026f70caa0080c531465ffc332d64a55990e39ce9c2f3236b719643c3e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_devicebind.ebay.com.au_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_devicebind.ebay.com.au_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
6KB

MD5
3fb8dbeee2041012ca0880ce373b6af1

SHA1
2fa4960268892c27015ddf48c0e24793a7bdfc37

SHA256
707004e56e08ccc3d58c3213cf68c3c1a2980e582d11d997f1818bb83e6fd738

SHA512
4cbfc833327df0b0767513f5bfcbdba28bb3dd1c6edc4ed412a41b7a2166ef8dd01f8a22e45ca0ad4c4726d9207919da739d60ac1cf04ffec7fb4cd971f90515

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
6KB

MD5
f12bc68d6981892fa91ff17d71985dd6

SHA1
c5f34442de4ee5744ea8ea761c9d7c23ab5d9fe9

SHA256
8851bc9abdbd6159a0c5022cdf70b936d7c75758f0769c3ad93f46d170ec2b5f

SHA512
e51183b5e3c3a66f96402db327b5ad5bf3fad9ca012a7d5528ac724ffa53a37b4446dd15c301d055292c3b11c94ba0ce7c4f1ad0f34f9bccdfa205faf398e986

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
8KB

MD5
b812e82fd422c6555bb608dcb513374b

SHA1
bbf754d8a2f2aee91ce6adb04d6dffc8e85038e6

SHA256
dd66c3b70db214b67d3ad5c1de59ed801f88ee9430f33b3af6079ccc477ee652

SHA512
5ffd8035cfb94f94ae64726b8202dc7cc61439a2d0536fa0f086ce6d532d54e010d63a0cfa026a39907eb9a211b630368bea097741955b815b10b4421f5f1268

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
9KB

MD5
4010ca7e4094f34c980abc5a1287cf6d

SHA1
c354a42eded0527fabb71a63359d8d07327bd6fb

SHA256
5cce3779ee46b3f61f2a9adbc9861d7bd1e22586c6b1fd55042d8dfa480da1a0

SHA512
ac29510cfd1df91549a405545b36508cc35a06b9f71cd521650f4d78e4e1fd89442bcce0f9a7b0162f155cb3eab278496465157557f051a21383a4ddf251333e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
0a97bb77bc6fa1d858f827c2ac48bb73

SHA1
e946c4609287cfb40fae67f2c023cfdc77263033

SHA256
dea2df21de44a4061cd82ebcac5796df4a719c64f098c2064c91100edcf46905

SHA512
d755b53acb826d89b915440cddd3c5b54fc75555fff7f46acb7506cfd095d680edd60ada7a348e7ffe516fdbe5fc0f2e2a07b054437eec72677adbfb6c1be1bc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
1afd897db71d3eea44ef66870aaef75f

SHA1
8c4deb4ad645a07c77736b86f2f6e4a53f4cb0a4

SHA256
41215360b60c59d6de35dabd616fa14fde1cf0db0a867bfbd43898cf23ff0fb3

SHA512
4cd00ebf30a9f74b4272100044a78306635e4ddd3711dcd3d0e4144ff5d52486f8ec0cb11890b3147c3ee0d503cb5b642593d65bdb3427798db110d7e825db97

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
8KB

MD5
8202d0b443745de1e18ac90b28f826ae

SHA1
1c7b5cbcdddf61e193488dab2d633bc8941b5ece

SHA256
2489d474e13186ff0e467fc8b4e53600a7b7aebbe3ab2d68285c0c4d3d6511f9

SHA512
b3d85bf40c2160bc2071d32ef957ff5150b0149ed91e918d60449fe25279f413352f3971ba85c863b85b0f47979d709bbe9fc16614f8f4fe8cde416f31a9bc84

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
04be868cf2070d92ded031ba6683486c

SHA1
2f9dc034e69bbdd6124785c6f40f2cf8d3ef82fa

SHA256
434f45a80027244daea7fb3fe9a7de1347e51225befd22161f25ade49a417b91

SHA512
155804e91cad14374f5cbcde84e352c8b1047650ea95f68d5f34063d6783b5a5d13924203ecb313102e8d6606423361f0a41cf86230cb835e12ce027d43d4be7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
6KB

MD5
4dd879881d5ab127cde184a17f2e1b6c

SHA1
92dda0e5f439e1192f512f355f46fdd2e74edd09

SHA256
f2a359f329bc489814319c1e82f4fbf250ac022d984f963b10fb52d4e978ef64

SHA512
49521af6b54d3d746d0284b59ba6ac7bb77340c2f6e5b47f409323131a4389b65d7a182443a2e38bfdb9df8a94fb3784d196fcad9db5a739470720b5c208fd71

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
8KB

MD5
f1424334a98ad5a09881bb10dd3c3aea

SHA1
790f7446bffad66d567594c7b59e6d44e74bb1c3

SHA256
c02c81fd6cea5c53fba5b3e8bd6b0d640b8a73fc4ef6d749814ab7c38ef25fc7

SHA512
90781844b4acbde181472626ac1b4a81e74fab4a15743f15054bcda3955bac5337782bfe291a5bc51c3db20ad438893a4b4bf3e9a0e914a2d0d947d78681065b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
5a3c117b2fa3228c53e8cc2976ca0681

SHA1
d22c386f5c1bd6c887bf0b43c69e1ac1fcdeafca

SHA256
3d745f70be4d61109e6d663bb7c99bd3f851ee8e4d9a00b045784dfd4a783b52

SHA512
44f16e4acd09a50f20a76b36f909a8385baa54ab0b9d3b9cd00ed38e074c99aad81370c0839614af82d57d629ee968d810a2d38e4d479fb650a1410095abc6ba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
ef7ad7ac92a2663713b7293e61082196

SHA1
dbd08bcb78ab870036caa6a5513ad028363fba23

SHA256
6f9667d26efd812c1014224c530b1bcb7945f88a6e915443d03d4b2481a056c3

SHA512
0875bc396a7d037fbe73403a779ced9c37db2bf2b670f2cb9218ded06df13f0fe5338639f54a35c9a21dffa80ea6cf9f06a16db1f2623498a2d9c567ee4a2616

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
9ca05a38a7f9bda279904b77dc2a3bd4

SHA1
69f03e3ef140860f4da35631e754c300356360fa

SHA256
9fa0c7c83a808dd44e59a61da3149e287d38d5eb9d4f3b410474ca5ec78c1264

SHA512
3a13ca79cb26750524a49c662df703cefe7f25fb3b696c41679db7fd10fdce6837f669db0e8a50cd11742853aec32fa3a69b06f36be37ac239086b602782e718

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
10KB

MD5
088f41aca928d4063a671592073ef4dc

SHA1
797d583a0d5f8fa39430d291aafe300b7e1999dc

SHA256
5f3a6c2875c402cfe9aca412c0fcd6a611ba7f05db89df193c8601f1613c0d7c

SHA512
36bfe650a563848d87726ab430d2005d5f708f9b0b13f6254eab1a8531cde6d45faf03fab013039a2ce52fc72e9757538b15488b0c00eeb4b1bc0bd63a834e08

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
7b754c9008e2511ac17ce784a0570caa

SHA1
6ac1c1cc4fe328fd6484328f5e50e9bcfc0b904f

SHA256
cb61c4ad989973b03a6298f6fc90bc37aed2d8d34e1e368692ce5c14427471f4

SHA512
2c24e238f920f097aa6451c9f340d0c798aa1ee0c54fa2830b40969fea758a6cc52be4200c98a9bba67c15dfaf723e35a3872b44149a2a5378ed394f0c4ebeb8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
3df8e1e5ba2ee768359cf9c023ea7d43

SHA1
759e8a59f1f816e8715e6481449426bdfd1071e2

SHA256
c5a29aafe1a4ebd22f4438573b7ad019fb76a1819fdd0fdd8c2ac686162dc6b3

SHA512
5fcbdb9e0ec98fd850e584bb991be3454e855ab856a5457f82fdae6a4adf57672e915de5b9d8bc9df826a6fc2b36d13cd7cf188dc8d217eec0c25259e8b20d30

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
701055e891eb1764786e5133ab1f3c67

SHA1
11a690514e1a6a4583b72694399481796a964e96

SHA256
d71b5d66e546d07cda35b728e44847531a827c99fa1b93d0a557959c881e3e07

SHA512
991ad5ecc5248b69500de6ae2313d436afda3d373c55ea0d16b43f23e1263891a3be412337a3e35ed3f6d3789f9096e9c74ade1761e39c052524264fde1982ae

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
12KB

MD5
3e2e9194573a58f37fe1620ce3422e6b

SHA1
169a4c89a01ad53a0ed3bbb1759d25382ba617f2

SHA256
2fd24660ba7ae3a2463b96fc90350dbe4c4ea8749877a5c324770533a7e73895

SHA512
a107b5df487aa692280a87e2714dfb8ab2394eb8b5480191ac60ce7169686b380e85424cce514ded9f35e5ac419453f56538f252addd7d9f9ed0e596400c9d9a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
14KB

MD5
ad5e1def1c53ba781928f537e752b5f4

SHA1
ff88d38733148fb19259df9167e2acb093abbfff

SHA256
34d69c212e96e6dcefffc42af7ba691fdd694dbecd1302c68a5fc567c6e2e654

SHA512
f6349c46d1b03f6c8a1fd10426bd4392ec7bc8933fe194c115d29c091734bdc43a41e94c20d9da646faa691f15f1b9ea18f21f00a4669719065302e4ed29680e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
37278a063d56d98bfd3e079f45679657

SHA1
92bc865bfc54cfacb1fe18360232acfad1c666e3

SHA256
668ed17efad62c91ff1872801135db9d0c4a50c6e32aa1914ecc311891177130

SHA512
59f108e587e68c6f2bede576693b58a9eaea79ede814d4fbab929f22bb09c9d50781ce3e8c94e9954028a17cb2fd34bafb781746f85f55593c85772c15516510

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
bbfbdb1a7515d4faca1a7d58df476d75

SHA1
a278b055081cbeff4253a81d15179676ff3abcc5

SHA256
935f644afb9d7ea08e2572829b621652d3575bd1e66d6b8b2386d7c031e1ce0c

SHA512
e3e0a4de8374d4cdecaf1b0a9de61adcad411ea6def6f9a9194abcde55a3f8176d132a185c1303528b4b36f398ff791692c6dbdfe49160430c926634a9891759

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
256b99e4e311c21d5c8c00c150870a99

SHA1
c17d65bf21b0d85cda80f5661d5920c398e53a44

SHA256
f6c1b6fb03fd657e9a8d56136efe3106b1f4c9970ce9faa258b7e70b03719723

SHA512
e01281135edf4447f18fc6dd5e2facdb4052d39305702d171f0eb9af346cf420d4806b409678849e21e00b9db4cea0ed7877999ca1d767c32ef60db0e91dd681

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
6de6610bc1b709cf10c539c59332088a

SHA1
aa69437d8a3c4a5d6d7f5708f0b58558e6631cbe

SHA256
c39ec3b430b2d0f47089ab2b2703adf98fa3f170ee234799923a4fc8ace5979f

SHA512
179267b14041a9795ce3c58ccf1008315371e24a44545ddf5645c971313c36010a86a06f1573b8e444e5ec17e33492d32e9cc2df4ce12ea0f9af3f515c8323f3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
22f4093b9be694606d005b840cd51426

SHA1
66e51945507e7226d384e50cf25431e784d404d8

SHA256
852096a71705b197a6a5cc43e22ee10a88f2a37abc59aae66607d6eba7614b2c

SHA512
3ceed3ccf5fe20c9e8bec03571a779f26b245e0b89ffaf073925de81bf50af9e53798587cca9ee635be811f664d1f5f60f3cc075e5d46076282a7b2208cc0e90

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
7b35628c4a99cf14616ed61a6d357795

SHA1
571ede36bfbf6404b7fa76ca27b8b82d5d652587

SHA256
cec2004294a9fc40e692414d7a0a1db3bbaf0ae3a365245f4049915981624aec

SHA512
d3be0cc6b3e7f82b0b14b804f0b523b1df924a931d2f41385af654118c4df12e8814a37d3a0283ee880930842e83a8471892825e65d39a0c6e4f437ef7e9a086

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
8376cfa428172a9c6ec862babd4f2d8c

SHA1
79d629e58278626dabf4dd970f0fe8c18351ae17

SHA256
c9483a64e71b7190ffbdc794079bb8936c67900f0e46765ad4817b763d01a09b

SHA512
1a45007ef5e6d87ba74796dae9b25aa363ac77777cb75ed4e72afc3958db39389d5344c1b9b469b0e40b90933448025c853cf0c299c9188c3adb9caba6c468b9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
a9978aa539e1175bd64178f65dbb7c35

SHA1
c15e03fbc9566f7b2c6a1486f36279180100e6cd

SHA256
84085bd861b89dc8ff41ca3fd0bb5679b9357c23208654e65027ae123bd5fe37

SHA512
0d66d70c84c1d7f31495284968a9fff75b99068c6e2a64ee8547ede18545f02e1ece5b2e95e582fa6280297474924b89259a8c3440ece2b44ccd956652dab109

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
a173341309df99f53cb383eb8da3f796

SHA1
1f20c5e968bb7e1cfb03a7cf68a4f618a66d90b1

SHA256
5b08a86f1420d979f2b6c011ab29ada5cae98cb2b69282831d11449cd3077f8e

SHA512
89fdccc222d748442fcfb3876ce2191dc1fb8ad08ab6020154597387457a5628188bf7964f2c8247e738019d4e9a75d9a304dd56eec0d376dff1583b58cecc9c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
7c6fd9c9f9f06900304584259ca95cd6

SHA1
1892bd3ae9c3f6bac2baf3e555fde532bf870dde

SHA256
4bd265ab21bac7f7c905f73a86918235e1ffaa1e58cde2d3390ab28f39ea38f4

SHA512
f180075352195797434cc289fa538804c63b1fde3d61cbb5cd004fb759563433aa041cc7e88f123947e8c907464905eb9c298bf494057f88faac9b8a0d2e703e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
ebbebdd60793e456f31e3cca5ae7a7ea

SHA1
93c43fff4d9b9a65674c80e1720a9f6f277994ce

SHA256
72df5cc3ae95baa0dc9be4c6955281d67803bd17dabc0b4e4e68b890e4175ecf

SHA512
29a29d0607caf3a259158709db99e3002cebe300d40a926eb0fe046b74568d7549791c9445ca8e9e0a54bbf6367fd85873fd9cca0cb8a20e18401c565c146f80

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\118df03e-23ca-4df3-b50d-47307f115c9b\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7760f52d-b90b-430f-a5c2-3fc60b6f52e5\index-dir\temp-index

Filesize
2KB

MD5
6dddd819930136f4b1d3b412e74e722e

SHA1
9360179475793b27ea4a45783835c4097a3b8ef0

SHA256
5acba5077744495f351fd05beeeec4b2ef90287bf9426f1cb94a40afeb930d69

SHA512
171c3d6be314198c2f03d2f6212a9d9630425057e11b00c5eee4f19ab154c2536cbfaa6d1a9e0cf42fd2c75c5d20883fc6ef11fe9172c56a192d2da3f68e94d6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7760f52d-b90b-430f-a5c2-3fc60b6f52e5\index-dir\the-real-index

Filesize
2KB

MD5
ac76e161222bae859df77f992b385322

SHA1
3db3132448aacdae223a5e94ad0b132b5c9d67c8

SHA256
9879d3c861405aae6e45177a1cb74f4f80e951635df628e30788867066e0d25b

SHA512
29349449b79bd672588841e8814ca72984dbb23784c4c29103e18840fb5159ef0df69441045d3952637f8aece78f1e419ce32b167546b28a41eccd044909267f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7760f52d-b90b-430f-a5c2-3fc60b6f52e5\index-dir\the-real-index

Filesize
2KB

MD5
42304f815a7df0a8236677f1c1699f3b

SHA1
c3b6b067a2b66297dd909cb121f086411a776f26

SHA256
934d38828bec902e58b005960d82f1eb342fc5810976d47e98783eb530647386

SHA512
6349aba680fdbdf790f52689dc4df2b5a27dad1ae6e01f1c72edf6a251ee8631b5732475f132e665438017722636ad018f4deee8a4b4548705ad5ef8d2a497d0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7760f52d-b90b-430f-a5c2-3fc60b6f52e5\index-dir\the-real-index

Filesize
2KB

MD5
4d1a4ccbeca60575d563c0b0a3ce7e35

SHA1
783de7caaca6d178af16695d085eb254aafadc0f

SHA256
98fe3b776839d7fd4d47259ae8f20162d813d8913ec3505cef06bafd0d7579e4

SHA512
680f18477381aa551240e3dfd2b770cfc3c25fc84613924d19c627c855061ff3f6d9bf468f7153ec35f8214e199deb65f9979236d18ee6517789650064a8ad99

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7760f52d-b90b-430f-a5c2-3fc60b6f52e5\index-dir\the-real-index~RFe5b8b35.TMP

Filesize
48B

MD5
2f8f2eded643fa206b1bc567902f119f

SHA1
2bfff6103e59c856375a6dbb8b16e42b43bef30f

SHA256
3ea90fb38c6d9dcd4bba1ba91319f954103cc09c1950f7a67915cc87aff04dc1

SHA512
7048e83cfa70efb693cdf0baf051c65f1e5e73c08bb87b06cdcd481e283aa33a9e57736290d5b0c3d3e296b89886727259d0d58dbf85af8fbdc25b2df2e2bedc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9a40a5e0-485a-4af3-b511-d0b415eadc7a\6c41e9bfceee6f5c_0

Filesize
2KB

MD5
7f73bbe3b728c1966ddb350b2db59c07

SHA1
f4ddc7c0bcb9565988e4ccdcb557e3de0e227dd5

SHA256
3211be6322b09a15b378371c088382e1b9477b923b8c98648f5412da1ef58b0e

SHA512
38ce682d4cdd3bd3d9b74fa650d579650b37f2546bfb05d1e5441715b2d1045c80a0ded07cf75c6d5f78cc2918fb896a1226a24d88e319b1b33967d8e8f0e1b3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9a40a5e0-485a-4af3-b511-d0b415eadc7a\index-dir\the-real-index

Filesize
624B

MD5
20137edc93de146899bbabb0910902bd

SHA1
dd2c6e02971e970fbe791dfa7aeff8807446d490

SHA256
d4126cfe2d5f6bca3ec640b22caa14fe0007b9c67197c455e66053511476ed7d

SHA512
ba7a11951ef3bcceee75b9830f1d5dad01ec35db293fcf0bbd9e4ed974b4e8d72f5423fab52c313e31c6d6f3c9f73b2e315bd54845951b2490a1e1b73ffdf799

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9a40a5e0-485a-4af3-b511-d0b415eadc7a\index-dir\the-real-index

Filesize
624B

MD5
afb8e644f94bb74ade64640cc8b5527f

SHA1
5a03a2105d6fe537e941cc3e396e7b12ae05762d

SHA256
19bf2c086fd9e017f958075a4d522cae9f0a846f97d3599238f38a915c67d87e

SHA512
59bccb274a9a9831ad7cc1b48adccbcfb0ee829f4cde29784d41b257668a16b5b3745ecdfce74183bcd77ed074a270aaef44d3ae00b640858f947b52f23d29d4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9a40a5e0-485a-4af3-b511-d0b415eadc7a\index-dir\the-real-index~RFe5be377.TMP

Filesize
48B

MD5
0c003eaa17e0643da92461dd4fe6ae72

SHA1
355bd786376ac8cc530f29a858aa93ef8dd7dc1f

SHA256
f47811d683ee81e53cbcd01b99e2415f47da1f8de10a723bc7f1cacc6919c808

SHA512
110a070a5367db1ba5b38763f28af49677d15844b6641110c468f6e1660d5b97f824cf54661dc547319bf6185d7139b5c17681985fd1f8b0dfc4de6fcc1868c7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
146B

MD5
71cce56f5d6322ee070df91138dbeeb4

SHA1
29902e9b271758023d4199718c01a052ef5858fb

SHA256
9114fc353caf9ff5c1319f55bc668124ae38420ca862d625d8f4211b1aac9f9e

SHA512
6b725e97aacb749c97c50e8560b23fa214494b3501f728f0d8e7d0cc600115b1fb5eba2120288fc5563a06cfe2cadab7f2f45e1786fade2ebc55d0ed7e4bf45a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
148B

MD5
6ed0df0fc6080a8bd12a87c6cf321826

SHA1
cfc8f095d1b24d2e51d25c1e1610e58e18fb7641

SHA256
c6065d008dfc5224b533b9de7bed963e980d2130cc618333689c56607a2d90a2

SHA512
0a0cde506534fe47f1d96ff48f575e2cb3012eda32f228763d372e9e76975af43f30c888a00017dc8b244e0ab513ab39d58e5ae39141bae2566b5b715d6fe06e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
157B

MD5
5270d15a67b5a86f2fab21b46379fe2b

SHA1
1e705cd02259661f6f0b39c78c4c40de8dc634b6

SHA256
b58fc21ad032ac7132dfc0c8e98223a90a96c526bac737f90a93d2f766be1c47

SHA512
89a8545385627a17e19aa794c984cf859a2d6eb593eda9b4e0013e1b64e5c1face1d9c1582ea349ef7a1d5da2d42200b4da91376761b356936ae63794ebed87d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
217B

MD5
77a66f5be54061de99269b2fda7e2ce0

SHA1
b14bcdbc6aaa963362066248f24c637504f3e3b1

SHA256
15cf3fa1f9f3afa712e535a794ab7338a262cc933018e214785d8508c3830eaf

SHA512
cc36baa932fe46f93c4e046c304882358877a0f037a6bb970eb78faf59dab85f4f138e17572262cf2e0bda9fcb7d8880974934585a3a3e816e0d6595d3840b62

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
153B

MD5
40cb718c5ddff2ccce095c4f1a9ece8d

SHA1
63ed5597568c48b241e5b5e5041675a59b33ee17

SHA256
9cd618e5aad5e3d7a59a7c56347d2bc8f2793bd4154fec9e3e71fd62b2535261

SHA512
2bd781bd6d6c77e108ec9334b2f6e82b69e7cbf46fb2d536dad4e00afd7232edf47837e736f2ab10079de916ef7d36f0a6c97853901e860057485a737c89f85f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
82B

MD5
37baa2d356a3a2ea1b45091fd6cf8bd7

SHA1
a6cb2a1349d6bea59a6276e290532ba1b80c4355

SHA256
8f381606a4f96eb2cb1fbd3bd3d3d098fea2b93f2ac12dffe51726346bfd454c

SHA512
868ab039864740754d3900a5513e5778a13f49c17002bf21d1e998d35ca5d3bb3ef01ce035c889e312adde0288a6e34aa461f864089c7af14b9f04e78fc23373

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
84B

MD5
44230c910a6479095c9846542e203ece

SHA1
c9093e8242fd63c73f4f4b969a311f443aa5cfbd

SHA256
747f2f4bbc3f98691a3b4ea77a8e24ec19617ac0be5627a1eae2018e684e8504

SHA512
d4a82c4bb6728b6b681927be5a2f19e77d8cce10c1abf027ebc1a5596b4dabb9e1f6af08779e0c0f5f13f7696327128186853bb6869f3fb38c4fdadc84ee8301

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
153B

MD5
3a9fbe58cc08a1bc411bf221f9125077

SHA1
7e07b3b1b65ef429489082fbe72b11d7004cce4b

SHA256
f6d853a79ccdc4a7189780771eca6b974968a30ed5120bc4f86b8bdb51fbd98d

SHA512
77e44b4c4ae31f93a6152ad88dc7c3e7785f3512e8b09afa9582a2370c5d430275d8f88cf55226f71ecde457b99f39236465e44fbce78dac6bc905c6d9e1c69d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
153B

MD5
4444950d5ffa399cbc7fe1ee0d87e485

SHA1
8a76a640c4139fe8147cbec31a7578b610f6f4b2

SHA256
21494d1fe4efb051eb98641134c364ead076b0197d15fa145cd5e3c630cf7b7f

SHA512
4107fc190818c0fcc9588599c014d374507c20ab02c1d69f29a3d6460cfb9a80b73a13066a9c1b6c55906e14d0fc1ed3a633c1e0636c6a08e5091480a4c5f318

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt.tmp

Filesize
153B

MD5
3b7792c58fff82efb5d8c0e69111ef38

SHA1
aa1a2ce999187e139c3ea1f0feb2f9ff64b17d52

SHA256
49d79091e39ba404c5982c072d1619d9fe61507931561762c9ddafdc71c19cf5

SHA512
b3dec12b263e7b6feb0ea392bef1ccf61c9be2bbd805013a0c57a1392fa4ed9b7530612da5f64d14c564283db2cc118c68fda8fe1aa2f4c78f17b9a76761f307

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5b5996.TMP

Filesize
89B

MD5
fe960d9fefbc3e8293209e82d193fafb

SHA1
2d3b6fbf6c0b3dc8eb0e49bb2ead1574505d09fd

SHA256
31216f09591567fa0d1aee89d9a53d7f6fc65d49cf62e80c994ace09dd79a04d

SHA512
dfccce07edad8e33b9a2f7e27f068d6b5ec0c0864716756a439437095eb7a33e6d7e861dddaf944838c9cf391972a3c1b03341b274702cc8e0f0a3a30d6a799b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\67a473248953641b_0

Filesize
154KB

MD5
a9634985ed55078465de681129406fe1

SHA1
6f78d687a6f3fcc4cd8c075b296a2f70beea112a

SHA256
7243e24e2d80321011614185645316a34aa8709aa46e1e10a03576286a861751

SHA512
6794eedb42062d2aac10ff7f123e8eeeb6249b209c878913bfc32845323678314815c7ef87d7c8aafbb748459a17cf449a5b3f7a999d80470e770eaa4e95b795

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\67a473248953641b_1

Filesize
370KB

MD5
e40f408f9ee9e508b0c13c623f1f600b

SHA1
f3ab170df19d4efb42e88d9254266195597ee126

SHA256
49f6376dc90b103c645b2e7c6e27e7d6b95e5f3b876972176a893aa468cd0cf9

SHA512
360929882960f147bd9a6e7c2d04f54e6865221656d04a2c8d068e9323d90e393871eebacd47537c117e8942f018a0dcd8339c42be4663ce39acfb76414a89b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_0

Filesize
17KB

MD5
75c5bf5c408bf24822b9c2d1f79fc02e

SHA1
f632129011c101d8837c6b531f14a8b32099e670

SHA256
93704beaa88de0bd1cdb8441c98eeb59d8970f9fd41a767443fd67b5eaf73c10

SHA512
28364bf001cae291b6cb55798a0b6fc568fc776d03d442717754e5b9a13251d60d0ec409a8ff83a83622b9e9498eb98e58f41946a29da10cb5ab18640bb073e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_1

Filesize
11KB

MD5
7112d3fa53216313a6f5c6031bb71fae

SHA1
44df8f9c5769c62fca9cd1003bda1483f3c50df9

SHA256
4c8de5d18af87663e88c74359013e47b37c95255ca6c6c5037fef76aa7e7dec1

SHA512
973b9debd693a1e959c9394507465f52cae5ffc2a042e2a19ec26650a6371e3995892b0d9ae5454161036efc82bdccbef5867158ca980fdda6a6ff7ac5543dd0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
fa2df2c481d78080a8da939b2e1a74d8

SHA1
7d75fa71db778c1eec98603a55aded495930eb27

SHA256
5ef7bd4333736676cd2b9a7cdac926c954d4160df2b6f18d2d601c6253c2955f

SHA512
a8674e5ada80ff95c72ea9087f9e9a1fee3f6f409bb11fb4f304a656030cf81d329aa01afce7c44f0bb555694abb7a2e5857b1380b7dbe428f61f94d04466755

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
6229af1bcea67c358e7e5e00e7ccfd78

SHA1
12ba161d810ecd285b72acdb37dbf44bdbd3eed7

SHA256
8174fc2e3d0ae3b191f2937a8a12db56625feded550b6976e5140060d65792ee

SHA512
9368dd86cfb7987cccbffc9a211533b4921b34df3150425e41bfef1987d6f21108687d8af2f2e19a5e79126eee058c36f082a73ec06d252be25a2c2da9fd61b5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5bdd4d.TMP

Filesize
48B

MD5
03ab4c195667ad70ad2e8bccdded38e2

SHA1
60d52a19a9ba3cf5f544b203025b9cbba8229cb2

SHA256
d877e0e6ab2edfd1199f0d64e09ea73b8588724e40c0acef9f6e1f1bd331407c

SHA512
c3f81f3d4f183ae59f5fb65bee81ea0c489e88832bced891315d4d6134508df771f3f2d2ab8bef77e0e0fec3d9a14d61a6c499cb87e226d9e9a1462d5a72be2a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
7KB

MD5
9866b6df6624605b38a1d1e965373571

SHA1
f18e821a2b86bc123b4e5bd4cb2b440500b55125

SHA256
2949c211ef4f716aec0075564de18492799c646947923e8aea8aa64a399b5c56

SHA512
9f53410e2418a846abaa25e4049430c79bc386c3ad0429584421aab7df3de64fce7666e173f263111f93d1220a15a65d8fbfa4dc1f866055bd68c24bad16a410

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
521691eb8fe499df8d43498fe91296c7

SHA1
359bc85f947c7271296feb9223733bf8eaa03d23

SHA256
ee41af5499aa7b1bdb2ca2c231ddbae36d3c7b28a28e1de1d25b95945701d5e0

SHA512
ff66077202e25eaec9e07a3fd8e02a339dfa9d2361af4140dcd86d99bcfb37d973009dcd4e4fdfd131174d22bffe311e5b6539b78902986255cbbf49520eb9a5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
f6d217f1137db3419813cff6aa3f50cc

SHA1
fa037b03578ab22fbf1309415df1c044a23361e9

SHA256
c36ee1868d09e0edb68685f8bd1815dd466a16731fd593070e8bce8b4257b700

SHA512
c0533901bdc2482d354519676b1f3570162cc88dea178fbb169841babb1b3d71d2ec91da2826a170a15845c477f8b204e254a09e94c342d0934cf820bc16f35e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
c8397ae2204fcc76282b10658984670a

SHA1
1aedb5fbbfd88b48f032f3b76abd0b44282b2c5c

SHA256
95b9403b1fa596cffffd6a81ee4c413c11ff47bc4d4046c81d9a151721fdd73a

SHA512
f303cbc4cc7fb09ca04335bceb477c96df449e67679cfbfe9db9710206707656f7910b3fb4d86ace62edc42e6b698214fda58ae3bc5af5d4da73ec82d1d6f396

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
b903c3b74b117a97656af189100ce1fd

SHA1
a676d43c6480e5c6908e19cfe8725e2f32ebc868

SHA256
9c3ff9ed653992b1fbe1375a04e77b10dd101ae16023dc2ea1e6bcd82d815415

SHA512
2d83632431a970be2324e60ed93ce14d2b12eb9493268437077397ecd71e246a4f9cc7d03898e5a71e174361c97e4ac0ea9557fea2dbd227fd0371921b3fc5ee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
8d5b935425196d5cacfc1e271c5458d0

SHA1
54db7c500894f00d93dd63d5bb8880b96af20e56

SHA256
8224a025a5572869c9693bf9ffaebaa0a9fe64901dd642003b393870b8b9934a

SHA512
50d7ef2106a69d3eb0d2e13bc62a3fba4c69f448e7df9e3db306a6cd2a3ad8e199d9136cf9c96511ad61b4e9a3f6a3f52b0603555a346672c2f95a13b8bcf845

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
9e08ecc592d9f55487a8ed8a5820957a

SHA1
0baba6e2c5131e0e089f1b3c5c7e116c17137b7e

SHA256
7b97b3ceb980051ef4cc574168dbe53a7ee8793417afbca7d3c8f71e4c443172

SHA512
3736fdb9d2288e7ce0dbd0c555547ee97a0d93df192ce4269108acceaf96fd07a0d96a6295cdb182705d9159217a08c4133913fef7f6a3ab35c8dc748706774f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
7KB

MD5
78b841989d1af686d6a8e1342e18dd50

SHA1
23999ce411102874e819563d1990de3a9ba0879b

SHA256
ab1501490d1116fcc01d3c0a1ac0b6afaaeda4b13feab9406011f313abed4be5

SHA512
310d23f3a608229689fad1d5025a1a9aff42d1639e3c9f3334ac5f046dfb69914595b5475702178ae34c186dc703398ed9731e765d6ea8911aad8e97e6d29078

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
7KB

MD5
1db2a4490cc5a2d36417a0dcff8a29a2

SHA1
7f5f7512b697af6f377bf83048581341cd19eac9

SHA256
43b8690625bb478085577bb98b985e28c514d57c5741e48cfcdf0785735a717f

SHA512
4a8e5f34b3781c9270cbbde6107220c63b84ade7c278d7d856808ee09668b41591686df5f9286d8783d6ab329c3214931640e76372f870a98886807daf037b7d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
2989c38b5cced474153148744844c3cb

SHA1
912b697d99a2f7f2aa266cbe20d7cea4a5e894f7

SHA256
7e2fce9b2f241d6fef5f1e033f5e41281b1ba28df69d52ab8d4d70cebe2ea9d0

SHA512
08cff25c5cd97b58dd70887129066a7adb22b78a5bcb6ec627759cc88078b2d07585ce17792de4a4454a5a6a82a072ccdfad9becda1dffed32d992d252e981e7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
1c17873b98120776208d94ccb5b7da9f

SHA1
275608718dd0bc1d2a08a874af24f11dd305c891

SHA256
1889b67884711bcf0a08cb42cda9ecb73fb00bf3cec608447206668e28471978

SHA512
dad8741299ae5c1884d58290547d7fb4655bb11cd8eda6b6f9cc61d8bbf7ceae1b861e90a6011e08c3d984138b3bb08bc0a43494120eab86273c6efbd241c678

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
667183a10d45aef459ff2c3141f0bf27

SHA1
fe0ebf6195df722355eccf852a295243c8d5013b

SHA256
b6f952b97623c512702dce2f238f14182d7c3d98cdbf70791df7e5c3e1c20c53

SHA512
b208646accacc244cd09d778f51ac6c84b0127f1dc0c2e7470816e2c93c90cb702a6b9b948761255ef3baa75d8d5e819f7f8be3357d71586d6e59cb3dba7a1d6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
6c7390ff6855c32240415054124a8b11

SHA1
828547d383993618d765c7e92b91ea85d2ed59c6

SHA256
9469b8ed1d2ec5051597c16f1869ff1aaf404081bcfb501cc44ef40ff3988f3a

SHA512
28c1a1293b768f18819994a07c54ba2cfd3132e6f74a4f37427bcaad7004aa03a4228a91d15ea231f682f58d217446a7f9be6861ab946ffee82767f24d5de04f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
8a648fd528f533bb474fa2ca4572efb4

SHA1
548c2c106221294da2505b5902620743bc69549c

SHA256
6a4cacc7427374e3aa76ad39e803d6ddb4db62e27bcfbfc36f42b4f080ceb9ae

SHA512
1ad88664c09566911382f50fda01ad03253d463202b719790544e4d039caabca96d97d21ade1fe076b21b684f865298f021174f82b2427680fba4cb81c5bb38d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
7d43af9f31694c79ad4eb924697e0bc2

SHA1
24e97b39737b9fb7b7add1d8d59f3f7a07c1da62

SHA256
7e18785815cd5f3360f2d73b119742bf43bb3c62000f6afeff97a557e17c4788

SHA512
1586980d313ea7e6b41d8755f4173b73bbaff3de0ffbe207868771e7214dbb43ac68160fdcbd835bbaa9c949c8d2695ded3fcda24640c9d23eb4ec2621c60725

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
97088c9ad789792c38f6dbe960b579ea

SHA1
a12ffbb5f6c325b8f1ea2614e9a02e2cfd31ce6c

SHA256
5dd67d621deb707afd91b61c8865ed625e543a71aa3f9d5ce3aa34b4a02dba3f

SHA512
09ed9c533fa37a654cd8319a256a1afa5eb2c2374661361d40f0059a18c40e2e11cb62b1f47b1d160e4f5d6eae00e38fbd0a3b869abf94edd7618c9ead90d700

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
10f6a012018b1dea1036c7a238ac7ee1

SHA1
1563c1cef2c5e32ce75a6529380df4ce84ab428a

SHA256
5703605c4678221d39e74c082f78210bf722edeef7a8a79a66efdd2c446404f4

SHA512
3ce0f48066e94815a0a4bce88098931dbfa7c9943f8aafef48c2da1e1a913e34098895bd3088b7b55c01bad760bb6606a242277146cf2756694a529e6ed01b13

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
cfb7a12d346ba58237f2caed20bca47f

SHA1
1c4096914bf972b1dda3ef8ad0cb21dda70940c7

SHA256
db3ed4ec333add6f9ddd43735c4df8c90da231937fcb9577de508d3be75d8286

SHA512
5442d5546782c732f0e2dbc3154f1473dd43a05ac3436904c46e91a0ccd368bcebf3f502a29835f72d974bfe2d628bdad078f2f3fc96427c1c224f2f27aa617e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
7KB

MD5
2d0500fb76f41a8949e27db9eb06a7bc

SHA1
d74470badf4d3a67f00ea003dc62be6e1e8c790f

SHA256
1e195106dca4c9490adbeb654cfd1615c88d601291ac81c3674661273e0a2ec7

SHA512
8b852167d0e55ee933dd5c99c7d587c210d5e2f003924ea23b94dfab9ffcda7d80873a8a043fb1e51eaefaa690f994956cf6bf3c0ecbe162958ed3f8506bef56

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
268fbd82c128ca09e038c66447ebe620

SHA1
beef23af2a227e6613e59739dee36a2aa527b5a5

SHA256
414218d1b54a88d5331d4e39156f1fbec4ffe1e771f6da4396deb12832d18100

SHA512
cd607e33e280d4948b27ea76ac11e727bb03542323fd8377d0d5f5ed32efdab893e4ba8974038638badbe0e8a0c07cb799153400f86173f26b59d2bae1295482

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
4e74553b5933098015469ea76bc715b0

SHA1
5e9180447a03b5d3c7689dee7323a1f4822c9056

SHA256
f5b0310c060ee98ae7a7c4857dc31bf17346e90a1caf057efc587eff5e5d0f99

SHA512
e98803685d32cb49e61767dd968dea008cfe59cc69c4108c5f1f1db4043bebe47b421f67d0eb32cdfd2e5c7a1739dfcc329a7f8d8bc7009984a451e297a7859d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
126e2d8acf870f0f9052c5a737eb3866

SHA1
7560e1e332bcd61dc8a8559fd912ea0cc46a8f19

SHA256
21e4cb4bec226a3c2e7c0d1f4bf48e90799b15f023df01bf364d0702793dfc4c

SHA512
076a6a91278a15f76b015a0d3f81535d81e016330d8457264a1c26b0778fc77c4b27bb51cc48b4a8e75adf8c928cd87e3a68d9e60a028d54e7db08a206c77db5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
7fc271ad9699c4caf36172af5e7a72cd

SHA1
020e5a98be92a00c1141a4da40f337a12439432e

SHA256
1f9cb7d5a4d7404c3545f065ecdc099f1a169ca1aad0b4ca7e59ca590961c3a1

SHA512
b09dd7784553157218015bc53eac744013509e8680318be11f8bf18c611e766c637be41149e646e5e778916c0cd560014f934a45c8f8222428b7d2172eeebaf7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
8816db8e929fc1e8789f8f1598f395ab

SHA1
e237847fd694c0cddb5d264503d0a1279de3a1c6

SHA256
455a8167a621724d72ca674b25e8cb06c6b51a6d1122d2be5ea479b455de304b

SHA512
4189a3815b1b8d0e6519cc0896eee71a12b2206410f7104145d6407abce771f0d4463f769f7f3fc69c74f77919d74216d7ed47d2d7bee02c1a2cf1d206c2eafb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
7KB

MD5
3249fcf973b55581225b16f34e578d48

SHA1
5bffe655edb7b45f7f26eb35571643442bccdfdc

SHA256
87009c55994c64c4fc67ec60cd56fcd8c6a5e237f7b4b1880b1a5c5fd67396f2

SHA512
0d3214b06731aaffad43e14a58301788e121a0bb6eb368e312696b31c1f012e8bd18f39159bbb2f0e9c2a187592206cef18e2b1157dca4eb27bec38c2a12629a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
1fdd78783186bfc1e10046b8f3520725

SHA1
548986b88e758199ce2d1ea5f79e7e385d679bca

SHA256
3dc8a5339bc726e8996d8e5047796b38edbb1414929270181121ddf864cd3199

SHA512
0dacb4edb38e647a3c4ff5452c0dbd62e9c51fbeec074ee3e932f49a8c944045343ccaf15d541097a174f1fbaabe207bbd16371203b659f61b8035756f2f207d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
6979e7a842e4d11d27d730bf83460f28

SHA1
82a22fd346ac0b37fc5329b8abddaa4011a10dab

SHA256
6585951b8b280a3a2ff7b088e5207866344715dd213bc255aa27c447e15fc24e

SHA512
3dbadd71555a025fb9a35441b9cd3c8c3ec383e7196ee29f0cb98f81265d5b9ada09ea0917cb11301c7b3f9653d068db90a10e447a6602128a625a222a34f61a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
1ed1d3d30166fa47022aa6cce9a85eb0

SHA1
8a03aa1bd9b63e41107f4962157b43b860a6f59b

SHA256
be322bcf76325368f702fac483a0b3b788c634207e8bfc0c4ea56eba33709652

SHA512
767b8573fd6a9aee997dd85af15b1154183545f7be1b25a9a25a50a3fad0a3728451a559a892445382771e810dc4730999199d97e6c184b6393326c87c0041b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
7KB

MD5
c2ed4cb36e27b6035f027e8f7b080529

SHA1
26c188b352270b416d63623d5ec374591c791b07

SHA256
3efb0f69a5742278f82f39b8fa52ea734b5c8f0198fdf755e8da5653c5989752

SHA512
a4e08e204768e0eeb37364ea58a6e4af83404fa868e2d8ec0653d9e9d581660514ebc369bd2a9972e48ef517246bd65fc4ffa284907d0a7dd90b611b989ac7b2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
c80385e152dcf658b65668cde33120a5

SHA1
f56a1c057f2648977fc323675e2845bb4f4892c4

SHA256
85ec9c7fcd7c763747845352b50159656f54eb076ab6ff5f9973b18a027eaa4f

SHA512
997806c02603727615638758245befb7672356dbf84d3fd96360314014cc2947c7aeae889bd98f02bf8a6fa3efc7dfa7b45dad4eabece1b6d0f8ea33e670772a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
0fee365ef80a35c38651306875236445

SHA1
06accd0f5be78d64bfe1492eaaa224bd1f8ea27a

SHA256
39b1c461a5ac02b00c1f59c667b76861dd464c807ab91a0e11e7be3796bc4af5

SHA512
6d1753e7ccca9777aa3bda61883e24406a08ad024df804d13e845ce707206d33c1f8d49922d9c6718c28a48d1fcf9fe33505fc42e9a97caea9dbd860f5e3e136

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58467a.TMP

Filesize
3KB

MD5
9bdb7cb6611c34ff888150d960b6fca6

SHA1
a07143d9aea9d8759674fe38bae06995735c98ea

SHA256
26689ee8f57e4c0f40de0a266c63b2e588fd76458864f2dd1f13b3e5f09bac97

SHA512
60b1fdc41d01e35a09e20a5f527a40db572c69f720abccec36b914b253d86bb98fa681f8e67e585cfd07f4dd582121fcae27354baf1be97075d6dfa4a153aef5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\dd7ce4d8-2a57-444e-9af1-63093dd40a00.tmp

Filesize
9KB

MD5
40d41a630e24ff4f3eefcf217fb06e3e

SHA1
0d51a76a8588bdb52a9df501d61a77c477b8d60b

SHA256
0b8e499f1f84aff997e8041464e2007351639ff40f8478e43382281bea98e612

SHA512
a9e1a098838a380480cae81ccc09b9f620f8f9535984498a692f43c1e18c17ec2fb9ca58865002acef4137f6b2d77f584266fe488c632bb6a6aab0f1a975988a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
723ba7cc7809d7cb24709e3882585e84

SHA1
955bf40bf5a984d6a32e4ea6869e7c6111c13c66

SHA256
2c3f4b9d21c365bd7fd09b09b05291dc67b92af2609f907e0f880ae396687058

SHA512
f55b7ebb69867cbf6835228bc2ab448af50ebc8ff626013cad443ecd2613db1660e5ab422f2c6fe8278252065a49a68c2d731b91bbc682e2051925971915c9e5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
0fa437d0352c06d423e2e4bc333809c9

SHA1
75bb1f9621265fe4fd71b6da63b64bf493d622e5

SHA256
17ba4356a78e91c70ef5e83f969d0a53b33682b9c49804f2bd966c1053149081

SHA512
f44f2454f87ce15444a4dd4d93d4d2468ed93ddf29294a1494a99592f09827346593975ac255ec3f48c2fe7201ee28010922d84d7a1898aea59f250d268aa100

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
78fb91695936facc0c301af8c3b2a458

SHA1
906af48edff6146a1ae97c88cd5e82a5540c0b06

SHA256
def6819cbd27f1491acc14ec494532e6b61e3bf7906e76c8b09b49dfb3f43b98

SHA512
1ae757a1b2bdaae71b27be518c22e9880afa51fcaf76f0da393677931e1b11b092be5e1f075de4d5316785a115551443ec8c3442b66d591bdf1fce93a7e2b72e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
72be6e0a754c80a294eff43846a40c31

SHA1
bef985726b542c89b9be86540f7622f00527a24b

SHA256
3396c746ae3b5b83d0d412a2cb17afea06c2bdcd469160b2b3e7c4bdd96cc4a9

SHA512
0fa7ce30ba2fad5c5ef619c301eecf26c6feac345c1d2da0bc77e81511fb989c1d8cdfbae9ebc15a30bc6f84e3180be1bb4a45e63cd88c0f55026334b3551a8b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
2f205b60f22aabb710ca6edd8ad9e6a3

SHA1
f6440e9c1ef70ae17fc93ea0d10e24ae018da8bd

SHA256
1e0a7a8cebae7295573a5d60043d626ab5da557770205d0c007f9d3ce7ee5060

SHA512
aae74e5e900567ba3efd0be0e5064e00ffbeb2dd8b15ad0d10b4b2e53a0221fd14281cc23223f5d4d1a7a275ba28bf797a49903d3c1de0e14bc3ac309434c781

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
d73a3dfe77592d56fbccbb3074a32235

SHA1
8cdfa0ff3452ede418707f5398f524dd04ceaa0b

SHA256
791d3b7891c2fb1197be8da8f45aca57b146ef4842e57875aa9e0aed52973259

SHA512
3538c5ab27e64febd25190832eb0e266af7cd57204bad4156fbb33e9e3976e31176873e7fe68be9076c8358a6d55f7b5411da2e766ba4512942eeef1fe4902ce

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
4948f7c1fe9f2ef5ab6fa442e2f63939

SHA1
63d97ff9c4b6ab2f36ede25b8bd249ab71976ebb

SHA256
6f78bcdb23cb100fb9bd37a1d785f324cc9551ac695f3d0b50866ac09bb78e77

SHA512
e71058d9488c9cc025ad034344fc8928ac9c6cd96f0ace850054eb4b2bf44ca68942f3a4ba899e653684500358cac4f3a6b7e4cf53b1ecd041c1ddb008a3e763

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
c89070cc54d8fb2ffa833620c932f99c

SHA1
1f02b45926dc5442dd73fa8c3bfd32c75d15a8bf

SHA256
e57892031fa99accd3de987606d1d9390130a310a4d8759b1ec8ce54e53d0fc6

SHA512
7d8f4f81ba61a6733e7eaffc9ea0be2aa645ee04fc4230ccba8e678be2f7f65b15f4c2b672555910dfc03db22e129da17bbc67ad64e584d0c0dfd7b908def30d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
7898a913af893aca8fe729f13ec0e0c2

SHA1
1770e741b0a5e6f65ba6283d9f20930a890ef8c3

SHA256
0dc4994426f51644bb54c222442e575ca350100553fbecf9f0ee2fc4d420b1b3

SHA512
cf1a34a3629055226b49807e1ac100239e6f3c25e8c0a14bfb0519a0ae67b1b2d0f9167bd60496fcf040a1bb63e812560cad2b6efd5ed19d838eac1d4327aa88

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
9ae3cd4ae884b6e80276d77d2b6ba7cd

SHA1
041513cb800ca1856e9d6a145ed91140bade2b61

SHA256
478310e9e92f7a1be365a8172d6912f7b7b808a4cbed5aa83a9b52091badc074

SHA512
a2e1e21e879e06481dff768d1a215c7de29e4583aed41aa6f1702ead0b2dd10f6828532b2c3454b48f28cda21da325185f070f9060215d1219ba79940141a520

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
f678a64650670be9c99ce8ae28e22a5b

SHA1
6935432ecf111cf214684b0de253db7b31584eff

SHA256
f0d31100cb37b4141751de782550f66c955dc798e972895355418a60ace6ce5b

SHA512
093a0d526e8e83b48c274418c6d73d5ee7de2b951774978baf41dbcc2624e420f71628decf0ea6a1e8fad81b58c2fa7279bc193c53b25b3642ac81bb424126e6

Download Submit
C:\Users\Admin\AppData\Local\Package Cache\.unverified\doc_JustForMe

Filesize
5.5MB

MD5
cf02dceff25392c0f0ca2b8431d9da12

SHA1
9938b2ea26588e770915d40a4b5cf5f9f453e682

SHA256
35bbff72b0882aa05336fb669dd56ee89ff1133b14d17018527e152687e242b7

SHA512
6aa96eb5d0cde2330657cb3b1f166195f13c872426337df279aebfcd684b110fd62c3417c4f358675720c13735d65b18cafbc131655bbaa77e3d0260a9077e0a

Download Submit
C:\Users\Admin\AppData\Local\Package Cache\.unverified\lib_JustForMe

Filesize
7.1MB

MD5
6fa0f5c840a8400d10806b2314764baa

SHA1
98c1e5191230a28d33a343505a3ea9b1d509f6a3

SHA256
c5042e6ab09b413f45b23f8ab5ed408151f9a5296fcd71b65f58e53d6b1cd80f

SHA512
142b79188273a8bc161c8631ee9f6e3c3482437fd8f51140f0bc60d0b79aee9f616df3b446686ee16222f0683cdc6239a40c7235cee4525e63c2836134b70dd1

Download Submit
C:\Users\Admin\AppData\Local\Package Cache\.unverified\tcltk_JustForMe

Filesize
3.4MB

MD5
e13975d9284e70caf32a09489158128c

SHA1
b37bf2821037d3788ec5c8c1610f1a1f5221564d

SHA256
b591bc9aab2683b5e8e41c0462ddb57d7aeb50e1fce07d3f46f96c7e41f076e3

SHA512
2b2fc36f2aad9243adc82cb09d6ab2032e55f2b7fc8bff526441f85ccb968e05890e31cc185d3a60615c682ec3ad2960dcf0a9fe1007bbd5cfafe84a4fc7197d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip-24.2.dist-info\INSTALLER

Filesize
4B

MD5
365c9bfeb7d89244f2ce01c1de44cb85

SHA1
d7a03141d5d6b1e88b6b59ef08b6681df212c599

SHA256
ceebae7b8927a3227e5303cf5e0f1f7b34bb542ad7250ac03fbcde36ec2f1508

SHA512
d220d322a4053d84130567d626a9f7bb2fb8f0b854da1621f001826dc61b0ed6d3f91793627e6f0ac2ac27aea2b986b6a7a63427f05fe004d8a2adfbdadc13c1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\__init__.py

Filesize
355B

MD5
9a4426081301a231fb84ef8f6226a9e7

SHA1
94ce0fe34bab42a092b6b7620acda8c2da883a5a

SHA256
110c4419751022efbd7cd2715442bbe2e7f1fdf4e4fc7a5857d9406f0f9659bb

SHA512
5a673e8e83bcc95a95be28fe57ee4b6292a0a522d38be3e7790adabf40c89ed802ec511cae8798fa7ba476d7a09018ddf66b9c99f6919dcc8f1ecf496b3967a9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\__main__.py

Filesize
854B

MD5
a56e19f54a80e824d64e8f72c9ee78e8

SHA1
4f4087af34a52c3c155ea0274de2e4dfec45d431

SHA256
5b36e11d74db484ea0058d7d98d37d9b8b39a3fdfae4b3af4d84a0aa06dd0611

SHA512
3270d68fd690d122c4aba74af2b88621405a58e949e926bf38476591f4ef4db36e37b58cfab9fd9e18f64857543e088e96762f18cfb32d58da4e44ffc9ad0a06

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\__pip-runner__.py

Filesize
1KB

MD5
bb55361353457fd4f30a353cb2331163

SHA1
179f79578e4fb966fec56c8893ca632fc1ca32b1

SHA256
70f3d6b89e8d2bf93e1b37ef95e8cb160c339985113a6a4047a402dd0faf9174

SHA512
179fa5438124f0f7234e31a9855c6a378fd89d19fd3f2ebfcee8ec7be59a7033426b06aa035762c0bd65599177747ddc4ad4c7ead6c4ae405eb126fc9af2d910

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\__init__.py

Filesize
513B

MD5
c99b1ac1d271c5a66f9d3ec658e4595f

SHA1
c693fd7c867f18949246675b26669dcdd338481f

SHA256
31f7283a5b8367c40c08561a974e08a8e27daba9b657b6b468eb2723e58ec54a

SHA512
018c0b8ef4878299bb90c2a4d82a0bf7c43165e71dc9bcc478539db804f416ae32a63e5adb9029f2c777f72ed8d0f14c42a8a801411114e839aef58ab6d4473b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\build_env.py

Filesize
10KB

MD5
2027efd604e32189b65cd8b4137a1852

SHA1
8f508c8e73952697abcdb08e2f5d249fe0a27c19

SHA256
422bac5bc4046a3dfcef2d21751a956ee7a51d21c661c4fb5b355c91b98c851d

SHA512
5559f6483394a5633ef71059a288c5c3d6d75b97b608973d4312cf85612f6c1806b2cfcdbfdd55409f8b5a55b49749f25e79666827cfe835dfcf8c6c6754c60c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cache.py

Filesize
10KB

MD5
dffa4f3dcdad08e5106e0ec0ae156a4e

SHA1
e1e8caa4533a40f97d8b8c452af3e5cc388d8457

SHA256
25bebdf29e4f362811b695b9a36eb040d92452fe0c9d0f7899ce3bd702fadc0d

SHA512
f6b2e02164cecd9c27626fb9f5ca2a61a1e424e9ecb1fd2377982b0d5ae9d5c56595ba846998ce3cc0daffee8b5086ab9137f1e10d1c108477d00431e4446361

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\__init__.py

Filesize
132B

MD5
f0ac37f23494412689aee309275c45fb

SHA1
c98bba03ebc076049b09e2a3168633079a3ea7b1

SHA256
1641c1829c716fefe077aaf51639cd85f30ecc0518c97a17289e9a6e28df7055

SHA512
4b65e60d8d9d0e63d44b2f49be01a062ce68fdae5c962d5af009e3358edd5c18bde6d754846cc005c67811c9310ddc7eadd818002aed79ca3ea452384a176973

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\autocompletion.py

Filesize
6KB

MD5
fafa0ba4174a39e2e8fa1cf8b245cddc

SHA1
c5ab2ef81177b1de334bee14358f93012285a060

SHA256
2e58b732be9a0cdbbb664249145bf00f6fa1171348e80bf3f0ec0cc92e5356bb

SHA512
89611130062368bd4d9218be67311f270b8002f5448d7fd05adf02a81b165cfe2ede4274e2234c761a04ebbe2de4abca4f9d7440297f9e892d80392d23655065

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\base_command.py

Filesize
8KB

MD5
430984f0da919e888fcd12f540222177

SHA1
3ef7bba2ce1c2bf323301e99771f9b33cfcb846e

SHA256
17c9d471233e63e3109632547bbdb8fb2c66739be21571f233fcc7ef4366221e

SHA512
ce50be6577e7c0e1d896417ef024090329269d72529d566c022caca2a9aa1d6cedb091a2df7b28c77a09c50a9feefb18c3791afe8816f3dbd3efb427d6f99c7f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\cmdoptions.py

Filesize
29KB

MD5
0a7a8ae19d71ac2032b8cfe67ed48626

SHA1
5a7aa61fc1d422f7cde25ce0b09830fba2fca9ee

SHA256
983a81af4774868ced6d126cf8f5ad70aa6a34073b92153a669a1eb192a8713f

SHA512
8b06dc45b7c0563bab435056cbeb6373644b09a5dc485b8989bc45e42c20084dbca9af19c279e5820876f820cca03fdb9819350b4055eb12fd219a7d3189049b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\command_context.py

Filesize
774B

MD5
fd633c0517dc6329e5de277a63617387

SHA1
07cfd732dc65402c9e687dd7871ad3db39ee6b15

SHA256
4478083f0b4e6e1e4a84cadddd8653925f336d51bee8e92697b61b157e04860d

SHA512
72aad99c07ccb624a077142590311cbae5595371b01c42b43f927da531a4ec0177660eb5aa3755e49914cebf6c93f518ec38dfd77af5d882aff72fb8f220ad35

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\index_command.py

Filesize
5KB

MD5
67581963c2378aa89413eae914431859

SHA1
45c48ee48b7eb9ed0fa0fdb224e12a134139df12

SHA256
60827ce1c7d871b0c10029c1f1ea0382a8d8254e86a6258fd9187b223f97c9a9

SHA512
80379e8d60e412f748bf8cb81b74b80da4d79b41997f6f4bbed354ee2790f2b9bd1d9149f3666de52b6236779fafe211f58e867164076b56ef7edba7d79f7fd6

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\main.py

Filesize
2KB

MD5
f7db47c90ea41e6925709c9c96068404

SHA1
0e1833849981e2e55ee64824968688319eb0205f

SHA256
04365e7fe6d67bd83d269af8395b387437fef38e4726c2b0f37e53ec0a849c07

SHA512
8828eaebb0e41870b4a7e0d341248641b58eb2cbcda90bd017b38d6c036f50e961a6504bb40f2517dbe5fe3dc0eb3e15d985378be985dbd1638e2d14a361161a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\main_parser.py

Filesize
4KB

MD5
325f7776130fa6c623ef9806dd4bad4e

SHA1
8a34ef596ae1821215cc580b3f5a441f668c07cd

SHA256
95a0e9b2e04397a9327f2c29f5e30c03db3ce237c7d932499febe62f4186f74c

SHA512
b25f5e94e4a2546e28ceb0a184ebf1022cae0fd5632b1efbb6cf2e7b5f0eb673cb8de918d547f431609f36b86917102bccfff9b6cdb761e3e6725cafdcd9e7c5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\parser.py

Filesize
10KB

MD5
40d66128f8df845f126ae6b6f8f1691d

SHA1
cc61225b4e6b5e2effb5c5616171c295a893d4d7

SHA256
400918eacf0df800fbc390f63d09b663c0b6308252bfb8ae01e36338cbc30540

SHA512
b21ab9ec79546cb4a4b792f3828d9fe050158e2ddbf8f16debf646c20e1117f3d7827747e1c5bc78679b1346a879b904730ead5ade8ff2bbedb64899dc2f090e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\progress_bars.py

Filesize
2KB

MD5
3deb398ac241c74d78a7ea4110ae3923

SHA1
281e27d5a63941c18829a1a8b440d9d575fe9de7

SHA256
d0501fede37aeca9c8bff8194214d64a72975d4cd0928d5fb465c4a0b7b961e7

SHA512
d0c63390a9190468471763bcb3f7aff52c2f5960d23adec1d050dec015789a7a90ab94a59acb124eaf5b899c8123d4ba6d7dd39eb59698af4e4847194272f064

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\req_command.py

Filesize
11KB

MD5
5845b6afe6aec0ead2d60af44eec2721

SHA1
3ba7a3f6190c94fc97f0d2deb135202e1b11223c

SHA256
0ea78586650cb3aa3a12ff2a6b001c3a860d74066c7f2292d0c648e63b096304

SHA512
9825a63b8ad013a7ddfacb4bd12162c4fc8826aecb92bf32171d18d3c0e01df0f843274ce6cd1d3736a3561cd20cc905553426cc3736a6e70be769294fd8b259

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\spinners.py

Filesize
4KB

MD5
aedc7e09e60737fea30e38cc9c44aea2

SHA1
ecfe25bb7fde3149dc85fac71f6e92f923c51c17

SHA256
84827cdc67ab74580509da1b200db726081eb5e825fee0b84a9e7cea7cc56cf1

SHA512
378783a484e69148c7c7c342bff2d5c1d0c02359bad460275c3f479ea0ff199c21bd1e0c2f7031207f878404e2c64eee64274ae7a5d576c649a2689bcab934c4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\cli\status_codes.py

Filesize
116B

MD5
c28210e327c369c51dc0b66a3e5c04b7

SHA1
0f5af7b27d1a9eb30efc1023917c7c50a76dd681

SHA256
b0414751a5096eabfc880acbdc702d733b5666618e157d358537ac4b2b43121d

SHA512
a422bc5f1e1a8f56a9a30f73073137bfa30ac778241dabff949fefb85b2de4722bedfd7e8a0619c36f638df15978f132a3c73258c0e7314ef1380efb9020cb98

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\__init__.py

Filesize
3KB

MD5
11dfacd39208268eb7358cd0e15e938b

SHA1
22364bc467edf6a02690dcd0a6a83086aa572238

SHA256
e6844ef4eddd336bc6ba1d1b170e0739595eb6bcabcf91c732698f5b026b1fd5

SHA512
4a6c5f768469fa32292334404986febc741131612565ffaddffe45388bf908a7749e090d402edbaa0df487c3af767d8e12e251c1c0c07c1cc80c248a050de01f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\cache.py

Filesize
7KB

MD5
d796fbca95115a0d56011a05bd20703c

SHA1
70c2ef8c6253e4efcb39d5868e051ca89bbd535f

SHA256
c60efafd9144042eb3a10de05cb45f31925fb78cf66b44701f81841590ba9e75

SHA512
75aa8fd0bfbef60e7b7fbf99def4a47ecf4be5b221dd1522137364d2129f52c8f8e27d252407e79e6fe9f2b92c065074e67c16be9dde270a1a685f079422ccc9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\check.py

Filesize
2KB

MD5
e1725a81e100d704d1e19d4e54c3647e

SHA1
719d91213d809976768eba007186ecb19f60d13e

SHA256
1ebff87a231df5c8150e012f8ed21dc3dd793662fb44e2165bc7a792bf2c94f4

SHA512
5f43969fa9a41462fcc5ee349d379eb0c5a3b36955a507cf6ac80c9a812c3790e9d543b26397269b904b7f85af22f6b5bc91912a859e8b08c05a29385c5dca85

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\completion.py

Filesize
4KB

MD5
37e8e2479c7b3077de6794e45394d50d

SHA1
f9b51adde0442e0a259666cdd0d47130dd122086

SHA256
1d3e250f46e0b1f947ab62038187e211da7b2061ad13bb3a320237c67d15404c

SHA512
16cad22108346f3d886a69263e56bee362e3fe32cee94bdfe97e6bfeb2a17bf9e8d08af53c22700f1d5b6c54b65e6b74cfda7efcd437aac9f142377fe8b6dd85

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\configuration.py

Filesize
9KB

MD5
3694eb7c7165f7d0f192f343d4cb4b7d

SHA1
4bfaf98054bbd1b027f89190b6233d4803f760fd

SHA256
9fdf1e9f0a7acb46f91ba7e24508da668e3716524a62f7bf75a32137ee0144d7

SHA512
3a4482e3d02d7e656c118b920b8fddf7c86fe86092463cf3d986ecfffcf920627fe514b22b69e61a5c46542cab037e80de67dcafb2b854faaf145ae2037f28ea

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\debug.py

Filesize
6KB

MD5
c193ec946dfa684faaa807b4d9644562

SHA1
84a1c542a832baf80bc447b58d8f7bc678331b35

SHA256
0cd0d1804f58b0aadb633534b3754a8bcac7b4a1785f5dc227f6ebffc3d45ced

SHA512
020f85f148e8a31e475d239341fd69c7f5ced71168fbed81832d4733652c2aa246241a499d48104dd80f5491fe2929f2e48511e02dde8579943ae3f2d8e13710

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\download.py

Filesize
5KB

MD5
dc2d239d493860f2365cb59ffbceee67

SHA1
aaa2e2e35bcc3fc34b9f83ee9b781be60ba269ae

SHA256
d2a0749f2b3a6443eca20e39d650ec8cbe41c7b67deedf81f34a0564a869cca3

SHA512
c9d3e26d7e2cb653fd729164e31945ba8473ef30e08340cd553b51e7fdb8f12d02445bb3815b2b6000a8d0695d4552f8fedae04ab9f3d1130d38a9b9b8c39b09

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\freeze.py

Filesize
3KB

MD5
745b741ea6b1b0117b0e5756757c6ac2

SHA1
41582fd71749fae698c41dee54fd96a1262dbfad

SHA256
d95b7bd816134a6f6bcee7ba77c74dcedf2277158ae036fa1ddf9a9eaec643cd

SHA512
97ffeb4c0c24f9f0a132e90eab6a4f52ad2a721ae8534e97915b500632756a39515ec5b02ac2466068bf5284732d3e70b354140aaa125014d09bd0dd86062cec

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\hash.py

Filesize
1KB

MD5
0c3c6e30957a74e73c693e1069492566

SHA1
3ff85f8d8bee597549fa1ad996fd684d33518c27

SHA256
11554ebaf1ada0f11d162f1236799daa5090ae10b157e909b1dc2d75c0a75c64

SHA512
3a5a9a4a36d074e758a9a3a35b9d1b4fb690597fbc3ce5c93632a69082628aec198691b5abc5c5d2f1fee5c755182ea35109409ee23b2bf8996322d36da96a01

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\help.py

Filesize
1KB

MD5
c2be5ef0ef3bd2f4791cf800e12e25a6

SHA1
9dbfb87d39f05e31e727697d166831bfe0a6673b

SHA256
81c73a40391c80730eb809f9531699c004adb1106b9c64a7ff2c634b9ec92283

SHA512
7fd070195846f54eb06936e06a03c240fcec08c135cc93a00c62e8127b4581cf8baf4738021c9a8a94a4e6e539baa166636bd2c0a79a584eb03c58b318f0c460

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\index.py

Filesize
4KB

MD5
4e30543d85f73fcc4788cbce37947ae7

SHA1
8143789ebef3bc0aa909c030b0ec92c16c6b19be

SHA256
4405f1989c058556f94b5058cdbe627d7dec9fd35af2fd8209563048c3fca5aa

SHA512
322714ff64a860c8d8ae2dc9065cb1085b5f521c28b1a9835b982f493318f5e19946720485ab7d7c3e1509c5f2b1be0f6868ca6533f7750ae8b25bd97fb18614

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\inspect.py

Filesize
3KB

MD5
b67760babceb3bc5def685c131a89217

SHA1
3091daf91c0bc06f2b92d0680904dfe46529b4a1

SHA256
3c6ad8f53453442337cb9325f01764f0310e5eab9645fb1caf80d1a352ce4cf7

SHA512
35ddc8d59d984705d15dfdc651af219bf3149bbcbf425f89af0837dd75f0e9d8b446f8e5d883d7987ca928f625819f607c823430c824ee5c1dd32ccbded08b0d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\install.py

Filesize
28KB

MD5
27f113edb379319ecf851afbb4a81ffd

SHA1
099526d678ac7ec82023104a4349527c7723b531

SHA256
8aa7ac88b21973a3a9f6e8a1310158461000d83411654c5b338cf50705e8165b

SHA512
5e416b7b612b053169001ab28cffd501c3a63e13aaeae5903b3452baf7841035bbc60b3256edd26ab0c9d597cca71016758621ef28e3a23f3278bc0c917f24c3

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\list.py

Filesize
12KB

MD5
bc819796f8fd860c25573dab57634ce7

SHA1
653f19233b697ff3c6f9b19dc995776f9f7e2e61

SHA256
46068857890df9e312a605005dcfba6e39d4473974bf7711135d71af9e0ef428

SHA512
fbc8c812b8af077c29e334f8097edce5872050cd4f6f6798d55370b490389280a60ffa379708f554921cc8c3b2d68b86728de29342048d52ac2ea19c7bbcc653

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\search.py

Filesize
5KB

MD5
10e4131c00e5acab6db2a8a5f834666c

SHA1
63ccfe4f2ca4569a7a950ea7bf413e2be1c33cd6

SHA256
8521ad207836e8b45ee3af0bcbba19ea07ddf4a6d3c41459000b4973d526e92e

SHA512
78d40e0571a0a7b3a1b4e907c3150d36d6112c1261953d397375279d9125bf03dba777b7e29acbc0437499988af56aa2026d3c6a8c1051650aed1afadc4c228c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\show.py

Filesize
7KB

MD5
084dd98c9956f5b7f3fe9e9a681b4e47

SHA1
dad75c1a919c7c756d3068a61faa8a596fd7002c

SHA256
206f4be6ea3cc3a500e2d23f22599ac4b0a834a3dae493490a58e3dcd5acd0e1

SHA512
c7ac0ee7f5393a5db8ea0c19a997be58cc2e9d5f05c00dac6b290127f1745a0a3fba81de723081d3587a71ca7fa81217dfaa3f993340d70fe69e2fb12848a768

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\uninstall.py

Filesize
3KB

MD5
579fa6f1ac9c20a790e30c16a645ac5b

SHA1
0e7b34f7cb0ffbb7cca522cfdb0b895115e11f41

SHA256
ee9391ede9caefa8229b2c506f3c5c1b53acc8b5cbdc3bd7f77f7198cf05bed8

SHA512
fca56700b2bd70d77c7f4b1b73a409786dc8021dd67939c18026f70fc3873510b132b3fc9733b04d797c5595c81454446932244891994054c778fc3418d95082

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\commands\wheel.py

Filesize
6KB

MD5
a33c4b254a29e3497e8791a15c0942bd

SHA1
a01b3310ac7ac0b8bdabf3a88a9ac8e455da0ee9

SHA256
789461affaa834dc5602491d24236240cec25dde04d7f632421b2a26704f1868

SHA512
c3ddef0fa42e44dae451424ac3e194422b5eebc62f44e34f8994f4a55d3ba54ec394962466f079275ef90ef4e98a1c68b885f2b89520c29954eb678b31f61204

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\configuration.py

Filesize
13KB

MD5
1bfeadbe4887f31f7efbef3f13a2c482

SHA1
63a08a419202e4aeceeb8bd35219c75a867d3a03

SHA256
5e4022052d21a73b0cf8b17442ee61bcf58efc1b3aefea1029160506e31b112b

SHA512
51c6891296a0fc14c5a25db2cf7a3a8e5db59ac466310eed158892a9764bba478b189e07f03a68e37275264d88505410d638398226f11407e66775b6ff3f4840

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\distributions\__init__.py

Filesize
858B

MD5
8fbfe6a40e1f2ad53e483516eb995753

SHA1
cda4ca594b1ab236cb2a17fde09a59d46410ca30

SHA256
1eaea4b7a8170608cd8ade614d358b03378234e2a807e374a46612a9e86b962f

SHA512
ef70056bdb3bf241655d58c1c4a4a44d724e0052157a01f54a2584e7aee978df1c80b7fc9078cf40afd842317bc98a328a6ab4faba89efaf3d75da7e23e78ef2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\distributions\base.py

Filesize
1KB

MD5
b56cb85c7d81c388fa2e2e8eefc5aa79

SHA1
8d155b14c9935281f5f4135116043db2bc91385e

SHA256
41e07daaf2970c88cb74f0431397cc8297c6a8c302afe828be7ba84271ae885f

SHA512
ff13745b99a0d732c040ddb06317468c3e0a7aa5898961bfbd96ce76b25d9ddde3d283a59fbef4023655fb19fa406fb07e8127ade701d3e5b36d53a1c1c522db

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\distributions\installed.py

Filesize
842B

MD5
38f5423ba5ba35d0628bf5abd595a207

SHA1
d324a8c68f8ae49cfd4fdfad1b873d947f9feac3

SHA256
4229c715b58043ca04d296c3f0c1595a4c259df5354184dc700d6f9e1ae560e5

SHA512
4ef2282919a2f646b092700a77e899fb8c5f502b8a0f94c67a73e0bca5d6d8d8cbd0b68a81db8ba90faa1d7688aac1894aea0b1ae16b56daf8328a6373bc5880

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\distributions\sdist.py

Filesize
6KB

MD5
f23617dae5ef71d2703fe97d8a28be63

SHA1
77e02a0ac12b629c8bf3a45e863823d5ad6dc0ef

SHA256
3e570fe1aebe47a73df179ce33e6fa2e46f7aecbe1f621b8a24f2c85a6a7af3b

SHA512
0220d546b7779aaeaad8e87c07191c423f9cb31447790c5056a002640928e753e1174eb5796ba7bbe7fcc6dd448fad3fdeb759f2b4c77a230c934a2bc99194c9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\distributions\wheel.py

Filesize
1KB

MD5
2fb31e6f810839162c907943a8a18f57

SHA1
4b434ee9ebae5ff4a8f2c9941b9f877fcb284ac6

SHA256
4c70587e7bfb555b7c99884c614b47d774b513b143c2d0f20df994725f1a8b41

SHA512
146c9e13e569e25a2910f9a5893ea3c5afe0c7625459c6ac42307702c8682c2474469d644aee63a05bebbf74bb8dea2340647b90cc052ffbf5b8449fa34d4389

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\exceptions.py

Filesize
24KB

MD5
3f36b55a45373127677d84128a1c0299

SHA1
105f50f5882a01e519fe46857d0a59fa26df0907

SHA256
eaa716dd0826155951c6566f0d22d4852cca27bfd379da3e972a9603a35f7405

SHA512
9e25f70147e0f1583124432dc08c1974c3b6b6a30b093508a9aa4da09105436e794518c451a4c0004a68054188e681c028c8b5dc781b4299da04797d9cf776ac

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\index\__init__.py

Filesize
30B

MD5
8b1d3a4a3d674cf9f227b7dcbe69552b

SHA1
a55d1d416e674d9f4a8e0337defe350962f21f1a

SHA256
be9b7e25e4d979f87c6be142db665e0525c555bb817174868882e141925a3694

SHA512
9e4b87724025efbe758fb8fa370eb02274f2675d3c3c00713ff06c75b55f7005cfbe51195fd309073999c12afb12e1bbce5d3339d283c0602b739aeec6307826

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\index\collector.py

Filesize
15KB

MD5
45293a6b89a0943c30b6191584f99c04

SHA1
d5809b7e772c0875a2c43aa789ca4cfb5c9cb169

SHA256
45d3ced092c0966c8158f0166073f24681a3cf718d01e4e78023646c67b2fe61

SHA512
b9f6a2051f62eeda95702e78836becb454d7aa98a264382fd3a452e5c27b4939c87cd658f4ae0a43c8f7ac7ae192500e3d98b9429b27620185642eae35974f00

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\index\package_finder.py

Filesize
36KB

MD5
1cb80c25614830b17876f490901b9cd2

SHA1
98c17550e635edd89c94093e6406abc315f85104

SHA256
c910b8c6ccae7702a736853a217bcda32a98a3949c4fb941e966becf67a1edcb

SHA512
599837cf4b84ea23fadc88bde49a1e2a8a5c33447d783307d036d9951f1173ab2ee295a4edd72b263de04bb1f1e812e40c0a9967a8569913fe53a1a0afb023c0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\index\sources.py

Filesize
8KB

MD5
9f4f417d8c5299b25a4afec8d0c942dc

SHA1
dc58845dc62ca823e3ea9e7db6ea5d8b2fb7b4f3

SHA256
7497a0891f5ff3a92c95a00772ff7e4792ff5c17f94739bf164c8fb5e0ee3f12

SHA512
0344b7b8669c19802f91f92a5ebacb6b6efacabfeb771b6e782d629d273bb6dd7a8bff72b93b868be44f7b31b148fffde75e2507b0e8eb2f7a22d4047878cb5d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\locations\__init__.py

Filesize
14KB

MD5
1c435fb7f108a2f3f2b09bfe51b5e0f6

SHA1
f4ffe215d2b76b129112b5824927561d404fadb9

SHA256
51a031799fdff77172a2eb857f8a7b497605fb85acb57b84bdddcb6e63c2027a

SHA512
f79f6cd3537e2c351077086ebf9deee36db0a1e1218c847d12e91a195604802ea5a51a90c47e55b85e754cea15d09fb11c4dd671369b4dd9ed2e2aa867ec2689

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\locations\_distutils.py

Filesize
5KB

MD5
e1354e87ec259e8dc27206cb2d011aa0

SHA1
10cdf71b7814400226bfce22b99ab43b5fe7c6c5

SHA256
1fd6472bfdf9add0d5d50b268b841e68150b8c54f831bbba42ea151a427a4072

SHA512
7e7e1f9a020edd0c6399495bd80f2d692e85fcd859a21935aa92eb3ce7d628663ef04679ef89d732e03d90e8d8f08f89826835632135bf10abbf0b6c444a7072

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\locations\_sysconfig.py

Filesize
7KB

MD5
241c82a4ab5a64b587b9e06d6d3467c9

SHA1
49c9f1bd1563b4174a4be0b72306875d7d38267e

SHA256
206cddb3ad2ab059de468802fa8781698edb121de53edfefe3b90c2428505ec5

SHA512
f4c40d21a6f73a32daf99f15a4583af598b57d2daaf5a25e7d740d2e15f986910a06a678812a77c44133a3fddc4dc81f8b8d73d0de73ddb58375a65211649690

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\locations\base.py

Filesize
2KB

MD5
df3959adc2db3eb93e958438ad137a98

SHA1
b8e2670e06883b1ac1244f41eb9d63b50704c3ce

SHA256
45088f8b5778155336071934e1d4215d9d8faa47a58c42f67d967d498a8843bf

SHA512
81e4c30d31b670524c1bc9cde2395f212025d6edd14a1489932ca5220cf49423b99e4b38a76ba5243af6931b1cb7050aa0ae4bcd09d46d403d3c7185350c8eb0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\main.py

Filesize
340B

MD5
0bb4fe239f44137d18d96e9ecb11195e

SHA1
442943cd1fa0793dd0a43f75da3843ae3f9c67de

SHA256
afe52751ef072e8e57149cfc8a74dc38e4e2bbfb313618076fa57094652594e2

SHA512
d0bc69f04490ba5b312223f10d854e8ed6bceff8f58e45fa0c7c0db304b4d912a3be565e02fe858459e49ebfca4665677cf66a2137f6754c3a4a573076100291

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\__init__.py

Filesize
4KB

MD5
3a438ae5a4f53d86071f39e033a9239d

SHA1
27f3ddfc360d5f981f11dae326ede574b7519713

SHA256
f695375b7b3ee87b6316e62159c2d36159926b38a494fbfb936c7ca7b5f51a60

SHA512
0fae6d35237331d6875cc927e3fae4df680d178d66b11571b7bab988f5244d77497209a579b0aae837575019b013b12f0963b6e5321d768cd1dbcfa2c2dddfa5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\_json.py

Filesize
2KB

MD5
a2e9a177f5b2cabe953b29f922087724

SHA1
e77d9a9332b42c2fa7352596bf8ce3c78b0e732e

SHA256
3f470026b1ff9ad98c66f959d7a6579bffa2cc0e25a6be70cb4f256880ae89a0

SHA512
bcbd20476cfdfd6edcef4617c09ee9eb32e610d6590f2d896387567eb28b6d6808d47e32ad01a0f43d21dde9387368305fb1b6392519dae9bc4cd3e929b7bcbc

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\base.py

Filesize
24KB

MD5
7fe5eb920aab0f48b568754381b01e53

SHA1
9318db72d31402eef1a48c4d343254f8f8f97202

SHA256
7edd0ae57360238113a999d1bf6f82b6f81888c38c01e18c033c53f9fe952c90

SHA512
5d29acc1c0e0566bcfb97c69793d58102a98df101c9f458a13924ed307523522bb5cd78c0047a592be0615408e87148ec13976053bd02327ea897dffda25caa7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\importlib\__init__.py

Filesize
135B

MD5
994b6ede7339c2d81df1ec2fcf571a53

SHA1
e7447ed9c17db5df5a9200da03c4d0b8812cc185

SHA256
8d4522768c671dc7c84c71da0161b51b68b97dd058925bffb89723a36c7b5581

SHA512
91ff6287ab5b1ab4e81d92d30dc0948e6374908af5b52cda4b3e7b89ce84d9a81fdaae9536914afbdf9b69ee407425fdd458063b162bd55ce4883e152e43340a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\importlib\_compat.py

Filesize
2KB

MD5
4ca94dc4bc67410d96a247fb4d57546f

SHA1
d440a9db1801ded11768516745c50f4ce997b530

SHA256
73a6aff2c3fc0418c066e152268c358967f28145cd337c514c29f99eac3a07d3

SHA512
e8c0543376082f16562262643a95a6a98be8716d18036dcf73dd0db2c6146aaa39287b4d3a262fccde0f66e220f72854be239d93e3ade5473a724bae84b371bc

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\importlib\_dists.py

Filesize
7KB

MD5
463aae6f87cfed585cb1756fb53d7a26

SHA1
c06fd222d75aac13da98e2cc3658a00797b10bbd

SHA256
6a787498b23e15844f52101d8a977455add824973a1de942290d1b161635d1ad

SHA512
fe23a7f72cfeddcae293867e570b4615824a1bd410275b4cf937b55fd66aa05dac1068bce82d4b9bb228550f9be6076dc3340a44409a941f1c29397cc76d5ef9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\importlib\_envs.py

Filesize
7KB

MD5
06ba295334526117cacd66990e3756d1

SHA1
33bc7760623b4441a22dc59dc610c13850f3b3a5

SHA256
2478cd7e793d46c8eb710c3c74b06a75f06094e2927a911ef5aab4dc1e274695

SHA512
bfc9f9a40a1fc81634e18b882739fb3c4f4430d8461a3a393c5283eaa401a444b1e1f348858bebf4225723dcde7d5fdabd86d626a29de68f9bbe07977caf4937

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\metadata\pkg_resources.py

Filesize
10KB

MD5
2d8b96ee89fc53c452c90025c741619a

SHA1
4d42374ffb06a7de3f293752fd79370a57cecb74

SHA256
534ec44c020d4867924417d6506f77138b5965b696fdfecf1b312a64dd21ba57

SHA512
74c908b254ba23e3767be5046ceed09b8251728d9663ec863e1f873da993cde04d22c3e6dfb3b08fb4bef345afce470b507f7b16dc0677a6e388cc2c6dff0d11

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\__init__.py

Filesize
63B

MD5
f4122df11215e5cc0f203f0c4b9238e9

SHA1
af1b34a8655a6a39832635a34dcbc060412ed6cb

SHA256
dc31d477fab1a4fa337f3a2ea2a6bd83db6cd42cebe6a6877c5c5b9f1ae27a93

SHA512
c836375798f4d4bab31e84974c93f930b7975dd126e0a6aeb4239d32d74985d091fd82ec7f9260167f243c3ff27b513681e623d74830489deebc20cee9a3c3ab

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\candidate.py

Filesize
753B

MD5
5c6959bb25f9ca06400891d2662be98a

SHA1
afbf60b94e62d1e84c51222da4151d1deda70f95

SHA256
cf380546ec3f9163e32a91b0ecb0b4654303d8243611b7ab50862cf22ce37420

SHA512
1fbe0685b0fe9d63a377e5839e52f3ef931df27cc496f447444dc363e2143ce30b54f0d210863b680bd75e4f5e770cad5ce84171adaaf4bffe80fe71b0d51202

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\direct_url.py

Filesize
6KB

MD5
cd826b014f43ca7c10d624287145ed88

SHA1
8f451427685c83371522248923245147566ea4d4

SHA256
b81b58d871dddd33bd70a4095a1d1386f139151afe3164580a1454e081bd1d91

SHA512
a7054dc9ef0c6f2b764ef9193634af7d201da93560f361d68fdf62b552cdc4cf944b3e59c7988abf70cc7d025f445a80434147267864b995cb05edc72ffe10ac

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\format_control.py

Filesize
2KB

MD5
bdc269c3f40962ae622812360a68c3f3

SHA1
22cb3e5d1d2d4921c56bee8b25322405d75660e6

SHA256
c2db10a922bd1da522371404b81f82eb67958a6c3a1b8fd5405c55f7efca0c11

SHA512
1c7f457cdd19975a0aba60438cc5035f6fa7561b7b0339704aef2f7fe55104f0cff8ec66b61bff74bd7cbebf3f6df8cfb89d230775b4b3258f51e729bbdb0767

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\index.py

Filesize
1KB

MD5
f67480db56cf588a2ee92844959bbabf

SHA1
26707b880bf178100e5a233e43832c57a4916895

SHA256
b589cbf28c468b8692356babd261bc0c03fbac2eb2ba16bf33024ef31c3472b2

SHA512
f8beb8f1b1ac8a8ad038d04f1a3211a316851922083f28612f86f8ceb611354bd008f5253f8c322862894de78ba1636ba0d4277dd20c813f043fea0f10dc3a84

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\installation_report.py

Filesize
2KB

MD5
09657ab688e36ae6641f732999ff5e92

SHA1
8e0e2f7c9ae3d859a2f11d6dbbc5f7aea26cc1e5

SHA256
cd1559a1acfedafb2b7b38ff1f784b3a131908af5ced36f35a00be8ce6a50f4d

SHA512
a8be098b587c9b3cdb530ba7d5468450aff000843a94e5aea689a71ccaa78e763c51ebd06cf49a9b3503cfab3b278dc487577000ea5a6541991cb738cdaa8f96

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\link.py

Filesize
20KB

MD5
0489f7044b74b569d14da58815f97a30

SHA1
ad857745c966d37387ed0a791c086273e0d16286

SHA256
8c76b1f4efbdce54b31308c1083931d0e5e3297c010f03ae3f09fe3ec47c742b

SHA512
9fc231093de7c372e339bfe58d707f1d93786bda7620724ed5fc04ae486e3536391d8b5b2a8cb9956e8b4acef2c03f715f846d0437766bea78b73ab6118f1e17

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\scheme.py

Filesize
575B

MD5
f866549721be296f523dac33e08edcb4

SHA1
0dfcfe35e05728122f7eb4f279d135358343702f

SHA256
3da9261c93377bc38e592645b5fcf5033edfd6678e3499e41ae431165b77c011

SHA512
a773a4e36b6466b799132ffbb4cd1708d8f0b8751374f403eb6cfc46ed7ed989edd45fe9525e837d5c2b92bdbbc99267283783c24830348f7127bc4e9e8172f9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\search_scope.py

Filesize
4KB

MD5
5c0fe043789a18c85e1aca89bafe0173

SHA1
0f72e06bd7b63b9616d87d561d8bba6997f82775

SHA256
ebb3449ec618f38efce12f8c33b7a442ea3d2972c7fbb333167b578daa6f028d

SHA512
563ecf085b9123a2a195a47da1b4375bf12fc366c1bb6c960865bd5977eee562d0bc9adea9d284925a265b32965bd8b1eed9c694c0be3b038fb76a9403257e99

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\selection_prefs.py

Filesize
1KB

MD5
8e302535ea3e86c2599571aac77b9aba

SHA1
df4ee02f80ae25323daaf963aa49e64a4dd61931

SHA256
a9a15f0ecddc8aaa173e0eb1c78e4dd633cba9c70b270e0dd2ce0fd0fc874d0f

SHA512
9d4c9b546860eb87b70b4dc75766164c941b7f4a682e1e065405d1b3904cf76a7fb68c69bbac8be2beed9584ea8390915d494dc05f5dc2d45182a066ba596153

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\target_python.py

Filesize
4KB

MD5
ed86670d1c14018f47a04a6b8f531bfb

SHA1
66180881c5761052140add108acedea805abb6e8

SHA256
d97687dab679645f8ae707096c4306125ed2aab4d3a030cd92bb50daffefffe4

SHA512
499efa6b505a5222fb65642f19c6755709da9752be5b3f5d3bb219e9a52bcbc53ab880ddda26ab7119a6157977e4329218f9471d8981260100c47842ef8c9c02

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\models\wheel.py

Filesize
3KB

MD5
90ba7416b07b3739cc34d05eb55a15b2

SHA1
5da394e0c0514418be32b350bd1e653fa102dca1

SHA256
39d73535558be4dfa2e80def15ae7405f36f091946bc66b8b289bad0540cd7df

SHA512
f6f3995f1ac0d44641f69e2392957a53298b4338555db131a62daffad56e29aeb1b9abaad08726265c86ac0b11252f2408a638eb3af94613c6cbe8a28ba00f9f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\__init__.py

Filesize
50B

MD5
3893f116d94097c4ae72769a5f7c21f7

SHA1
cc7b633895c11040d0b99e7d0575b1d031652035

SHA256
8dfe93b799d5ffbce401106b2a88c85c8b607a3be87a054954a51b8406b92287

SHA512
924bc4a7222fc638fc8fab4a6e7aea876e25dcd355aff628aa21a77ba0ece90e774fa75d1797cfe688b7129626aae395662489419ad53cab4a842367fe97bcb8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\auth.py

Filesize
20KB

MD5
00eda2949ac78d384259b18cf19e0f6c

SHA1
f9652bbef1a3212922e0cbc6787299212f11bd53

SHA256
0f88004a352baa80c5952b7a810efaeca0008efe8f532254d29b839615cd5511

SHA512
887ece272126c816c3664747221aa2885835da81fdc1298494fa458cfb8f04c2dcbafcfd98a011bfda5c850bc0192ec83d6237c86af92b2a703ab1ef54b8c255

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\cache.py

Filesize
3KB

MD5
bd5623b783bcc7693c921082172f561c

SHA1
2521f1cc06b3f0dc49cfaa39223e69bea749bfa7

SHA256
e3c03def5a82cca345be46f9eee18493bfb4c5aa8f4b41d68f6ef5d50353c645

SHA512
531bcd976f686f08c297c847d824ff2ac07ab2eb4fe4fc681d48203843a887cc31def5da0bd674639a84e2de545eaea393afcce022171558a405493198024b9c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\download.py

Filesize
5KB

MD5
3621b8e7135d15afdd014ef6688a9cf9

SHA1
d4f48cdcf4be9675f939bb59f0f5efc55a31bd4d

SHA256
14b38fdbd74f6040818808bb7848ef01b364cb368a36a6f28ce4f69bc1cf5bc5

SHA512
33d50d8a70706e0d025fa989efafe561b4532ddb5e9e99216c0161f81edc51cf4144840ae4e37b59499261dab879136c0b8a0ece071bbdeb875cd889dee06761

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\lazy_wheel.py

Filesize
7KB

MD5
4c80d4fd2859b4b10c585aacc0f95fca

SHA1
90f90b661efb4ae55c9c0e5174c5f3f36128f344

SHA256
d8f5d576e6193c23d99244057b527519b7c725678253ef855e89c6c887f0f5e5

SHA512
ab278d291e57c3d8da0ad3dd055a61c78d0512fecceb3d89d12512ef5295caef23d0bd07e4d67ee8158b1d7a100fd9793745a327e059c82c950c5e69539954fa

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\session.py

Filesize
18KB

MD5
c10467fee47657bdaa238687b3f23069

SHA1
e14d320571a929c818f652306b132aed207941b9

SHA256
5e66a704a8d5c0f166875889e7caba4c387dc5a6c7dfb81112e409fdf7ae6460

SHA512
21e3ae03a353754cfef1fd140ad9febac75bcc5175623f6b2e07a60feb463f152e4dfddd13ec7723ff56278585da56b849e14cb5d0f8570a26426ba254700e0c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\utils.py

Filesize
3KB

MD5
41ff339c2fbee741fea1ee45d552debc

SHA1
bb62c8293bb1248d7515a2735dfccbf97ef0298a

SHA256
2276b17a5f8dc41bb83d05a48f212b7677dec2c1427201e987b773475f856e86

SHA512
7804568aacf9f56941bdaf0109b2538b96175f346055ffe79831287e67ff3fb459f8c0cd25701d9014406401ccffec446e2874f20453e7abf5e60d7b457f136e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\network\xmlrpc.py

Filesize
1KB

MD5
48f03ae3e7d166533d1fe1c50465c95e

SHA1
1b9d05d0166567a0f7b6d0295e5450ce8627cb64

SHA256
b00c7339a709f8dd4d5c63ef6a9f630b7cee6164a79efdc65ed811dbe13600f0

SHA512
f6f196c93bf36ca05c3b7d66f922d3278c85014f601b6a147f582a696770f146c08fa989279054af80acac63fbb8a106ef8f1d87f70f2cd4870899e153b15e61

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\build\build_tracker.py

Filesize
4KB

MD5
e1c564b14c012ff5d12bc9c9f58db9b7

SHA1
3ce919ff6b3538a4ce4f3d360378760933510885

SHA256
f80456fd37231c2397ec3d8d50e1a7b41e0581ce9be1aa25b179002ba0562fbc

SHA512
2ec980e43fd7a912ddb0b86eb83e6bf06acab3d486c90265e8702f1a009b70298f29d693d7ebf67a36840b4c3cb22a612b12eaa5c26569fac5f2880768be0312

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\build\metadata.py

Filesize
1KB

MD5
39771cd0be98ec2fa8e622fda059fdf0

SHA1
c816fd8f874f799a9620d92db505598d21c82ba8

SHA256
f52d02503f14dd0a99797a7e672b7c1f1c14f74944e10ae760382ba990f30677

SHA512
578a0446d208f615fadda5c21caeeaf4df744572111c6043ade541bfc142ac6354f4de0e24dec4d31535f433a1a663cf661c121351dcdbca2510d0aead8f8a1e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\build\metadata_editable.py

Filesize
1KB

MD5
e46da46fb32fe4b45b9961e977915b95

SHA1
df9f933316c1dbfe666bfb169c6de0d2884c74e6

SHA256
54b2fb2ef9ed284f2ac5d854744261728b45cd4b0e488f0d352d38df150b29ec

SHA512
a25e7d52711f6fc40eb819c217ce90af874aba5cae67b31272941dc7d151eaa8c57fcef62edb1835be2ad6eef6dba0283cca732361e7f20d7c6e4a0812d4a9e7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\build\metadata_legacy.py

Filesize
2KB

MD5
26f064294c413d623b7769abdd893f58

SHA1
e6d7d90cacce22677e8ba340b0bb31bb77dc90da

SHA256
f22ea2d50657f66fe528f4ad105b0728cd0c4f86be083e34f093b0f7d75a2e6a

SHA512
783cd27ddafcc38c117a41d0de3acf616b0c7c9e07beed359afb84fe5e5229d24bedb263c8c14035f56c8c2ef16b8589b391c496bd5238909b251e398b80cf1b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\build\wheel.py

Filesize
1KB

MD5
bfd26e6b7d053beae312119df6233540

SHA1
dcd764c358f280cc9fdb2e90ab06a9686d3f21ba

SHA256
b13d761412c0c430bac32ac3a2b87c92f719d631b9a889c2456cf33fe5242624

SHA512
04462a2559c1fdd8815bee2762899581b620d3035be6cdf97bd081b9901b4de633352c8d8d8444a13d6a549c6608c3420fd9717edc0705bb5afac9f98897c6b8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\build\wheel_editable.py

Filesize
1KB

MD5
d481fb9c7608f878a84fb81a8a7aa2d1

SHA1
1d8e256134a57f9c5fa78bb388b31b61d2d0c3ce

SHA256
c8eb681face9024a0a60452dafc161ceb62790d1d0690063590d8761a7b53108

SHA512
6dfc8dd2ddbda76d94096930883688e83d50904173bfd1f6ab4f7ec3a4ba026b879059ad5443884f558c537234d38e22d43917df406bb072b9c2898f0d12d859

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\build\wheel_legacy.py

Filesize
2KB

MD5
766bf26b3b5bb5b36695d996501fca24

SHA1
c11da3688040faca17b3b89417f5f8dd6d8d7c2d

SHA256
2beea43619a3fb5c43178e67cb5ca178c7ab174ba2e04a1008bcc4a0787afad7

SHA512
e1b594562470768639a17e68c0eba9f0cfb12eadd9a6762dfb532c811213fb101a082b5e5af2dd9f750f28d40816b2f373dcb25e317a4a8c192f14d9ef266a17

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\check.py

Filesize
5KB

MD5
8a516a49a354fcca905293bc2faeafc8

SHA1
85e2d739a4f7c67a948944d3c8c8d34bf609f6a2

SHA256
2f6e2f44bf1559bcb2c1da1e02133cf5609df332d39e321b50b94a7a552021e7

SHA512
4be9b08fc80bdff7b5b57b16c0382f7995ff06042d866fa86cd5d823c9ddd76960437a3543adb214a7e951ee561c74110a5696f45f49c5d796dcae77ac76979e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\freeze.py

Filesize
9KB

MD5
ca8293c287c63b92f4dccb8ffa140d43

SHA1
85da10b3f779ebcf6210caca45d5b81242b87f06

SHA256
579f72132092cff62166e847d3dfba695ff3bd804cad2fc8c4514daa7d90ce50

SHA512
ec41758e698013a9b84542a6cd407179956c3d969534370d8ef989a4edeb690acf6421b28e7b673f784b58431b5759a64305c172ef72555c55cb5b28bb6faac4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\install\__init__.py

Filesize
51B

MD5
c6f771f71fe2e186fb048050f4d2e467

SHA1
c72c58e6cd7763f27ac8041d54f6390149afc48e

SHA256
997ee1c83d863413b69851a8903437d2bfc65efed8fcf2ddb71714bf5e387beb

SHA512
a2a8d3f7862e8260ebc53b6670830104dccd73a6292e1ecef40379a167bac510f81a3583c3afa0eaaf6632be771dcc54be22f00330938b42b70b331dc42a9a0f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\install\editable_legacy.py

Filesize
1KB

MD5
d0804bfeb7b03d58a981201ed9514b9e

SHA1
ec9a71056232bf166dd8887676789766ae2e4e17

SHA256
3e812c3443c66c8676c90a613ec9984ca2ce08cb3882fe4e7027735b5db835c0

SHA512
30b25807f6e650970c726df096b945360b682de985e8901398e7a7dc422082ec6f27566e8f452a8158d32c4d242c66d11890921606bf347021517b33bc117ac6

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\install\wheel.py

Filesize
26KB

MD5
3a7b585d576bd0e774c4ae125429fc92

SHA1
10a43344cea2cc40fbe56023d8d7dad24d64c436

SHA256
5f9233f72520e4b94ae55350f60da291ce9d711bbc10f8bf4948b98ae103460a

SHA512
3e77c9465602bf5f8349fe4165f5edc5049ecb3999b255d71de48e93268f035885740c4cd1018a5cf4e281a7c676d9282d7a1a86b3972133d2105569af17d655

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\operations\prepare.py

Filesize
27KB

MD5
a03ed5d1a4ce020c0b1e395269fedc84

SHA1
c47189dc3bb27d53f27f4304c84aee03a997fdcd

SHA256
8e8589c0f92ea86b1c42054d2262caef57bd8516a9c0abd108cf07725cac9af5

SHA512
ba28bb6d7ebaecd11df7e5347b5ee666d71ffce1b0bbe46825bb9efb87b4be7dc2aed2668b311d13857c70b8455f51c850a2b2794bfd2b71986172f1381290fa

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\pyproject.py

Filesize
7KB

MD5
4c03ca2abb8662934fd185715060aca6

SHA1
a3a7f2be34fa567f7a9c0581258e173b1b96cd6c

SHA256
af0e1fc25a6d0e9d61660628a65c1b006c16037dac590929ef2b1ff09bba8977

SHA512
87af6c041d4656f304e922a16afd42e242e909947484d313074d82f146ce7d8a54f2158e62f845f84157593012b08ba0727e8377af7246a5ff99a48306f97448

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\req\__init__.py

Filesize
2KB

MD5
9d2b9765d99f3f88cd4a875dc9a0b03a

SHA1
cec4e482de5c5ad5112d930f61cd15beee34bc2f

SHA256
1f1045b59cbf05b09c94b82bdbac1a32da7361d3b94f7bf178fbe91805d2b79b

SHA512
e9ac4b7e2b0ce9305d7afa53aa0c2151c53fa476fe1f2477e0efdd9c34e6dfb2fb8151d9604e0b57045a26fafeb1567c9cb1e5de4d83fe45b36504ec04a8f533

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\req\constructors.py

Filesize
17KB

MD5
537ae9774efc5b52ee339249ab4bbdb9

SHA1
983a7ad4ba60d6f000ac3d976fd032883d6c004f

SHA256
a97359b54aa1b17a47c6445a210869db4fcacfa23cf0c0ca33c49047d7dc9087

SHA512
d210dcdfa60267ccbc9411b845e2fb1e44d10d986f95ff3dd40cb798a35026f66e91c08ae3255a7180e707205cdc80dbb142271608acddf85cef75942dcff1ee

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\req\req_file.py

Filesize
17KB

MD5
7b87864d8183a2cebc90f320d18ef5e3

SHA1
7990879bdb005a021e54d89d37e81d9813b9dc20

SHA256
8670bd3b3fadaea190a6e0e70955aac2926402fb5b0ac93bfb99341165508654

SHA512
c128395356dfb0bd4f7779f202f2458c4d0011c9c12c62e728609b345551fdf3cd00123b18ae0d98b4b47022ec0956e11b4f66c8c283f69a24d58683252bd7f4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\req\req_install.py

Filesize
34KB

MD5
f2f9d87f8535456f96aec049b647e2e9

SHA1
46cda681a01375c0fe15fdc8f4fa341b1234c123

SHA256
ca14fdf0d183a00124d378f39d3267602ce7ce188c104036a1c82c506fdd70d5

SHA512
8f56404b8cdbac5fa53de46fe978b074048a1b3fba67f2c895d9b17e8e57a9a301f4aa2dfce030acf7c96a8e23d338a91b725279d994d8c9c4c1edf8c3ccca93

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\req\req_set.py

Filesize
2KB

MD5
5e5ce95b24a278a3d7ce245c37ff960e

SHA1
f4e5b3a69525d2d7dde180fc39de4188c85ea89e

SHA256
8f77ac1b4b3a4b3a1545e5fdad69f8ae960db72113fdfc316f024f4629af471a

SHA512
22ec7902a5d66ca577ee9b86b06fdfe283650642cc1245f1c32d8864525e434c659fed2da3c8a3f5bb2de96bda462fa646742934bc33f1cb2503466037d01d8f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\req\req_uninstall.py

Filesize
23KB

MD5
162d6d439f5da67a52ca8daf31a9dfcd

SHA1
564dae23c51ac36d510f629a9f1df838aba8fa14

SHA256
ab30c8c49a3e3844d6a866a2b3bb523020dc59b013600053f9389dde2b72174b

SHA512
86c0b1fd58ce33df379f9839e6be8c2d421a3d18b21e5ae2b36ba80a0375c8b2f9c8e68082d56304671a45c8fd0603e91e5379216fb0947f9ba2382e74500121

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\base.py

Filesize
583B

MD5
bbfa436b355a45aa3393c1e1ac9033f2

SHA1
bb0a50e2866d29bb4c616cf2900fa3eb8eed3051

SHA256
aa59a1df6e520557ef1ba31ef6073936c879b1dc07070cc706ae9a117b4ab0b0

SHA512
4afe1cb158e4ca8fa05de5b664ced2e6f3ca5126cef3f124db0a17ff95786faa21434c11af603774184264e5ad47d82e621e16ff78ddaf290db2967331b530db

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\legacy\resolver.py

Filesize
23KB

MD5
df4cbf04c748edaf4cfc90de0dd19cf1

SHA1
1dcc2a85b3c60b33e061384f23852fe2d5e26b4f

SHA256
dc766224145dd454cdea3429238a913bcf936cb61e21b5134ba3c5bd79d7b36c

SHA512
46794964fdc091b939257a8b75f47da0c0f4a6a478d78035f98343c6f814c6b631f2143301afacbcd00875a912c25024bffbad034b6403b05d0a6a29c124124e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\base.py

Filesize
4KB

MD5
f4f9f1a3831c1c292624efa8043542a9

SHA1
8f49b0ae40fcbf00e3c170af47a76e86f6f9cd25

SHA256
0c27faebd16cab2418e6ea9779e3c31d06357b840efa9073587f0ed2cf7e2bde

SHA512
f1d757e932d236d269b43f1b8aa6095d28209a3cc9ddfae39dc943f19fd39de2ed197b0b883a742dc4674dc6e814413b367f1bd8b4301354bf1226ee73716b63

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\candidates.py

Filesize
19KB

MD5
8786dc3c657902bb76dd390653cd53c0

SHA1
cd735192c2a7abe24aafe3a0c5c0f3fb3c0adeaa

SHA256
d3b08173ce726b7275f57a9dbd4b0b430b5523189362af649bd85b4d18748dbd

SHA512
e839cc03e02480b65543771b4e257893f5284cdfca925bf35d7734010c9c7d48cd87166bfdb36bf0e2500d1a8477ffca8fb7248c6716f7d5f59912c1d4ec0d5b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\factory.py

Filesize
31KB

MD5
26f1e27d636154d0eea40319f5307781

SHA1
9e59d24ce8b7af3ab873b22e33e958c255c1ed5e

SHA256
9934eafe71b517d12add59e560f1fa029fa6c9d712fa6c42e72e4bf822cba7cd

SHA512
66dd64239dc513a4b3778728c5b6447c52c7cbc4f99faebe0b6027462e11f89cbe7cd6bc8420bc7935b34eb545995b2de696b0a5fccc0d29314b9b2361546790

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\found_candidates.py

Filesize
6KB

MD5
5999dd35511060fce36680fb68390617

SHA1
dea8e3a5eb8a9264e36d3efb323b742c285b22af

SHA256
f61ad3c90a85be5f48ed38e2efd1750311efdfd421d6b909ffb75e48748c7d07

SHA512
bcf094250ed061faf5572d72e2cff920949331d910e1297a86ac38f64b43fb62ba1db4915b843b837724ea12957abdf392e359a410d4adc1c841a4e0fce37ea1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\provider.py

Filesize
9KB

MD5
33386bdebf4b1fd8e8c4ce1a1b5aba59

SHA1
3e485dbad5a5e8d46bf99e94ba6fdd57912b15a0

SHA256
6dcb059d8be59ad07cd1cc15756d5f23082897c64daf57f5547c914e4cf8ed23

SHA512
ccebe6489d1656dba4597065565a30465ef140e2dadad5c1e1eb7c23c5ced2610a0815b740ebd51e2b1a3360dc9ddcaa4e06bb6bd232f324f8a29b2cbc8ea308

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\reporter.py

Filesize
3KB

MD5
7e387cb723139ea88c1ee7a115f64b52

SHA1
8450449913d8080bac83964245f253e118a3c0d8

SHA256
d3426da171244e5c34fab97fb25e7877bd5abf03ac247b7d1861dcae3e52cdad

SHA512
b89612f5864821d51e52532d283cab46b90d374111afa78400ed6497b4b58e9d0604efcc3e03aeeb95fe0c4bc67c57481c297f8d059e1cc51ce2811252cf8b59

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\requirements.py

Filesize
7KB

MD5
3ac646968193770054eef5ce0b299a4c

SHA1
784f726b843ca893bfae2d2db8e4832391e6740b

SHA256
ec91b867bd9ee58938bd4d12e6e946bdba93cb814c406621639cd0857f734ed6

SHA512
66808b67e8824968d5c6f804db3bebd83d12c625be567e1fb7e39250c363133e2e17179404ea92dba9423792f3af9eae84e274c2d8e921ddc288df9065cd1946

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\resolution\resolvelib\resolver.py

Filesize
12KB

MD5
c966a718961b0e444857373050b09ee2

SHA1
1fd155fcfa0a1547f514e35c4013a1c214e64d6d

SHA256
9cb24eb15304562da0414549a1414a31901ebb67fb19132318cbcd496cb3d017

SHA512
aafc4b6926c19ad425864209d0bd84ec4b8da84efdd9c08e8607d83b06603950e030e9833618375c3cec50895512563b9c912ddd0e06f5fe751049a29c062190

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\self_outdated_check.py

Filesize
7KB

MD5
5a348bc556980b0de22043e2f5d7d29f

SHA1
139ff219878b66978ceeeec920ad1f2c93adc728

SHA256
a648d08b1b96c90d6fad5c5901a603e92487817b855271d9c9b5c4593921d12d

SHA512
86d44c44d71f579cc869315a1ba7fa7eebe036d0d99359fc55996c2f897d6f5b46a017cd1535ae8bda66ec9f80335f6e37d2a8d6fd1cdd5c4d780eca059cd5d8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\_jaraco_text.py

Filesize
3KB

MD5
17df62818a792a3e8159a1787a0098e3

SHA1
6aa20e2c27dc77bf1257543461957f52a11b124a

SHA256
335e6e50f221e4da4fd6d754181c516aeeaad59004b48f3e5f22c4113b1c15f1

SHA512
08d344d900f840b85da8c942e5581601d652ca21184df20a4a4985c1f665c963f3ad303efe230c57ea8c056419cf541ea7495b4da4a3552b2d09ed0596cd5c8d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\_log.py

Filesize
1015B

MD5
d525aebd855b84182950ca3e13b6fd7a

SHA1
2c20b7d739a304f3715aea6b90eed634c2217c5f

SHA256
fa31cb384fd31da673e4115c0a7a122fd11802d2749d77a6e3db3da1fe23bcac

SHA512
46e30c99d22600897809ea272683dad3251f1938fea156dd087243c176c6277389b09f544869404bd6e807bb50285a6359b0b2301be89ab285b175b6f52fe15f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\appdirs.py

Filesize
1KB

MD5
c165a5743c1f307cccd2419071932098

SHA1
2f7d46108f0818d083ec0fdef4bef65ac5977583

SHA256
b3081c4ca3a6ddd68b7974d6eafe41512d938b646f1271914181ffc835e4940a

SHA512
855626248cc0f836f31e63ff01e9f4c09c9bd856a9ce160af776a652ea791073569e773f8a0b57349659f1ce0ba0152112be5d2caefb91d2efc2dc576c4f8539

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\compat.py

Filesize
2KB

MD5
412f6c16b2c8c0a5157f84af2cac05c7

SHA1
5b96aa24f35b6a072b7ce1f2c3df09e01079bf7a

SHA256
724905bde0626108d15a390db1a8edfe858f4b9eed26f13c5f1a02e0e2188026

SHA512
5c8434ea8e3f4a9b9f248beefa8549c4ea0d3337dc992d6ea12fd7c407f307db8a4630e4811f8eb2637f629958e8fbec5ecef31f3f01264c7fe61b05a5cbc7d2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\compatibility_tags.py

Filesize
5KB

MD5
964ca22d0609d7722001d792568daf84

SHA1
dfbada13eba8ef63d4bc33a652ada480e3e06b42

SHA256
c9d8a7f101bc047a9846c3d8e0e2fa7266f8e026ea5e5d53d31c52f7b5611e49

SHA512
aa278e6157336da7dc24a60f7e50376c2bae4f919b828cbf325457935a26a4ccd9f014b32779d5a98ce4c78b64f85b70fd2d07aa233565af53d5e0ccc537f837

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\datetime.py

Filesize
242B

MD5
913ab688b48547f157b5d13b3e854813

SHA1
442dc5866a60dac7ca2578cd773c147e9e1c063a

SHA256
9b6d58df002d41cfa38ba55e6fa93f33983a034672148e1e81c853767c21fa94

SHA512
f927aca09e61b6ddb212c234727488ad92e4ac77131bb61aa9d9f4527fba9877a1819b4df12d7810daa882c7ba08d8b3e1d041e6af689210de905c2f4afd20ac

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\deprecation.py

Filesize
3KB

MD5
a2b8aef0ef4cf4839812e40bae5db807

SHA1
9d3e78a239d0174e609be53553d0d823d549df15

SHA256
93b420fd404069a4ddcaaf3661501103a0fb4667064d71afedf9df7208a08f84

SHA512
1a39548c48dd59f58970500b5fc52040cb05b6688aaafeac31bcb4d5e763a069f13d7827d94495823b6cbdbd0904523e0af4817f18d20c127af06f855b6c7de7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\direct_url_helpers.py

Filesize
3KB

MD5
1c72a57c06feb0a553e09137539e5263

SHA1
588197601a7ea58749abb9033f8b50097b881549

SHA256
af6311b64543002bfd006a983830540bd0a3c20b6c514d6cebc86681f08932d0

SHA512
bd123433c663d9ef74d321da408628aaa99368288557a9dc5abc8a7e71c46232815e83e4580d6e8818de696df4fad86745b6fb4f83c5f8ab3363e2258b1126c8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\egg_link.py

Filesize
2KB

MD5
779e46db7bbc718a77b123cf76078ce1

SHA1
7f16cac0927cdf0a044e03f617a9e94a427b859e

SHA256
d0578f6685182afe11190dadeb1ef0e59e36ef06c0fd4a375999c092b82cbaaa

SHA512
a2b7f6cbd31dfa7df5c014e14bfb7fdb33ee41363e7e4531842c3b6f14dacf60deecfb4f57346ae2072a48f7a1afec88dcfdc6db1b0ba326e4feb58f329e9fea

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\encoding.py

Filesize
1KB

MD5
71781af636df2088d9c6fa15b8248724

SHA1
31c2038b64dd5d3dd3c4cf560e354e4471b144a0

SHA256
aaab170ed8b03088d730488855268e8f01f96268ab09a2be748cdbebe5c9b0bd

SHA512
a6d65005137278c217bdae67fc2a971b22066dd5d8b307a96c0b40550bad32e11870dc89411969290d2c3baabde8650ce34dc4ce58a0c22438dab36733a53155

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\entrypoints.py

Filesize
2KB

MD5
6824909158aacee9df77a01c1783af2e

SHA1
df1011df89a89e8e184b38cf4232cc1b15446cc0

SHA256
62584b4d1976a07040baa85cfb398bed4492ebb4cf5951c89a3780407ade6534

SHA512
6ba7233c1f1ef34f5bf4fcf4fd0a420cadbdcb8a75c32edc83aae81c36e7503c569e786f61e03b55b57c6aee70ed041b7e9fb1d889e18fcd2085af09a1a727ef

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\filesystem.py

Filesize
4KB

MD5
7c9ac0d7af57aab6094386b1309e331e

SHA1
2aca3a5915e77e20cdfd3236c03ce2e4d564e0a5

SHA256
6a3bc0faae28725896f643e9f18aae87ee2fb2c5dbbbe50a6e8e4557d5785fae

SHA512
00ee81041722e16bbe21592b50020e8e8cc0f7d6ee4ef9aa5c764e4561db0c8e1c8e5a9de45f9d873d7428bd37f74f250df099cdebcdfbad8e0f2b630ef37f6e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\filetypes.py

Filesize
716B

MD5
daae55f86e9bae3d0affc1181f6acd85

SHA1
b75e13ef5d44699f0af4ae12882321e63045b936

SHA256
8bc5c04347850a8836e85c3dc95d186f5ca002a298075c3d0b3f67d1f8fc8195

SHA512
afedc5779f8e90fcf5840ffe49e7916971aa461b6056fb434078018518afffe834c9bd6a9dce10d886361b1340807e09b7cd47f8d51c9fa8183c3eb759b59abc

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\glibc.py

Filesize
3KB

MD5
571da2de36eea6aa5e414ad453a5360c

SHA1
416a32119e7561fe1f0ce65d3245cca5b4a02129

SHA256
bd4916abfd6926ecdc60d70628b9509800685228ac2bc9e8618d7273c5aae30e

SHA512
b22380556fb98fd1e9cf75a1437f29387d63bd88cd5ac3ad447fe486ef504339cfeaca7990269d3fb402c7aef4d1ef4f385c9a7306e6c99cd981c5029521f44c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\hashes.py

Filesize
4KB

MD5
da7e18da884550c21aee0fcf1e1897ff

SHA1
c228365c815862e953b287888067ebbb94381b71

SHA256
5c618b2f4006f3e4615a7cb3f3bc45e8c159fbe04a69d1d4df90f8ede02908a2

SHA512
cd984779f0c6ff8f34bf7dea9808dee970752401f2994cd4d5983a1aa496bb9be2f58eaab0c5b83fadf3b38324a7db025c2277d3ae20085d029073c716692092

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\logging.py

Filesize
11KB

MD5
64c4e2f395320345d8817246915b3ed2

SHA1
7cc7343d270c44cdeb43bef6ba45982d5d8848dd

SHA256
ec114a075b858ddc43e5caccf86b700394f6aa36d0d8b3c3fa0243b897833538

SHA512
1529a259f9e7ea6097e2fa61b15df9674f1f8dcf827c0b36bda79136acb7e7ed8445b4d0dd673ec3a9724d151815ff1d8fc3e39549f2e55869530537c4df2875

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\misc.py

Filesize
23KB

MD5
c29e5a393848b434a04ef9419715c7eb

SHA1
547df77b22213a29f20d2bee57645abc1c3ddf85

SHA256
1d1fd5f7bbcd4c7373c2ad3526b9d366db0b2e4580389f7f11e61f1c96528036

SHA512
d3c99141ee8138001538bf3212540fa6bcb2c78c9e4cd60bf27f3f41294680129919cde533dc331967b001e39ba697b92fc8900e00ce12c7ecfff81ba7e83c80

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\packaging.py

Filesize
2KB

MD5
d8d737f6f2f135d10cf8cc3b47cd7300

SHA1
f4f51c9e6f4197e504a2abff95e040fa556d0ccb

SHA256
888dcb1f8de554d47885604ea85ea516c66ae1ac9c6f68f451c1e598399ca948

SHA512
5607a87427bc29dc7212e2ab725b1e69a863119a19269ef5f5bdb8eee22027c718302b4dfa6e83c75d7cbd19f8bd4b51be7717342069285aa3cab24bd324534e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\retry.py

Filesize
1KB

MD5
aa5bada61863c523f5d44e2393ce9a60

SHA1
f269c76b99b17894af50b6aa4b0056917104b04c

SHA256
9a115bca45e38539d97e0cdebb2faf97d73c9c40a7627fc232dc0d257dad6334

SHA512
c065f5914f04dbbd29de12511c2800752b6c2159255eda9cca60938e1b7ca5566b7b8ac294b8748aa102ecfff3acc387156f806f51979c7e88940dea0a5f9309

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\setuptools_build.py

Filesize
4KB

MD5
9ae597ef5e68b8dd221a74a47327b0e6

SHA1
b3bccb4896004ff798da12a3d87978f7b62efc45

SHA256
a2e5e9b9dfa3792f313f24cfb1727e9b7e0d3ef2b9a2ce39a2d03375257f2091

SHA512
db55ecace9aea1c8efce7d30664fd66a17c7d1a3735e4aaaefde39048be75d0268542e925c5b30debbeb6063f6a465289b4c786ec3753a1bb4e424aa75017006

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\subprocess.py

Filesize
8KB

MD5
43c53532521743b369079178ccb6bc3e

SHA1
c6578ade2da5ecf0db20b044a5a17d23e36178b5

SHA256
12cbea49189230717df13f13c66bba34b53753ef8ca534d08ed36028fd0ffbe3

SHA512
91c454fd43fec253f51ee1161b10a23629da5cd8d4277de2768567f6d13ad5e37c88682f385286d56a02c590c7962f4d3be78359cf98693bc285e0c748e198e1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\temp_dir.py

Filesize
9KB

MD5
53843a3d977e27c9dfdc97122906c4ee

SHA1
433d2bc933f4ba7cbe4470386025e4dc3e289022

SHA256
e6a3977bc33825e63abda15033cebb779ce4a756d2c0c67e293e63ca698fd198

SHA512
e810051211f24b462d5aaa4cf7d6dfc418c8cf0e5d1810f4eac4e75bf2a15bbe315262c210d216ebca409d72be8ba75a1053b10eb53f0049c6ff7b96db9afdec

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\unpacking.py

Filesize
11KB

MD5
751b4d258e7e5d5b12a7174e0893d7b1

SHA1
e772f3eb9415287d9b99fbc3bca6eede9c929449

SHA256
7b20e44ac9389d6f197e24a337325db82ce7a47c9a18756fdda93f2cc1ac8843

SHA512
29edbc5b62414589159aaa4f3d78cc4d82dc6c1b0029c4954af3565e81e237e3b632675a5e2deb54919f954bcf3e864d5fa8936992a72cfc3f12ff36a231e73e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\urls.py

Filesize
1KB

MD5
01c785ae452eba3f93b7404f21d6bf97

SHA1
bfd9cb6ce0fdefb138f2bca35fee7cd97d064c3e

SHA256
a9c7923996f995b343ac736cbfbfd2e0be18b6cce36b93703ca50c9d91db6273

SHA512
bb0b2ae5a92a19139fc8340bf77c89b263e85ffd3d97f8fc610acfc66d7daa21085254533b908869c45e774ab153ea26f382299b3dbab7dab581d8751c430f6a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\virtualenv.py

Filesize
3KB

MD5
15111b45000fb18281fb5dfe8dc4ef70

SHA1
14cb66aa6ea7945b643769280466da0fd10febac

SHA256
4ba7fb72c628ad1a620fa72f9f78c849961cdc8f0f242e371f988c1694401035

SHA512
16a2360e23c1cfbfabf4f171b4d989094b8fe9f8aa6842930d5c8bd6dced85de206b448df5f29e3495a95a0e5495813ab4049a015b04b3905d62e86bb8dff678

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\utils\wheel.py

Filesize
4KB

MD5
fcca8a902d7061c343959d2aac03ee22

SHA1
67f8f69dfc250eeaf1b80b9d316a9142cd35a588

SHA256
6f8e368e4c9d1478d7cc3cba70c47b329cd6049d50f36851e45df77267075778

SHA512
8684fd536616dd6637ecb61933b7c360bf85a0bdb733fe218c5744844df5ac8cc51dfc35b5553e0b2f5efa98388bb442bb491b7bd1665c67bef28752f4942642

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\vcs\__init__.py

Filesize
596B

MD5
eba6bd4aca847fbf75d548ff07627ddc

SHA1
ddf20f97603f281dc422347d7b063a0c31d728b7

SHA256
500aafce96e2d156d9a3751beac904799030fa8a08651fb35ff5a909bc720a85

SHA512
dc6f2589de14f458da792ad235e62175b72aa1a97934f9717895aafffc2db8cd70b6eeff5763acc92212646576e13f76e6ef9792f872ddb1d537a46979fda79d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\vcs\bazaar.py

Filesize
3KB

MD5
7805b2cdc22fcd57ebb2a0d9570d99e5

SHA1
7de44a798522565ddebab655ceb470da33738db4

SHA256
10a4ad71068aa4dbb434ae29e50d7439ce316f70d4c45c34db85eb272e346c54

SHA512
9bc0502701ebd247e996722527e8946906e53febb9b6d3a7dd5111a650cc19ce36672768d5f2cd900e781af6eb990aec238bb785f8dbb06bc592de65660ea3d0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\vcs\git.py

Filesize
17KB

MD5
3e60c4569ac2be4e25099bbe5fee952f

SHA1
0bc472cd9430defd1886ca436a694f356c920540

SHA256
deda5cf4b400fc9e08556e6be4dbd669a49e0f372624ead215937427cbc829f5

SHA512
c21a7971ff9b1c2b3f0f6b9c2a24bf543d97767598eba526cc7fbbb55062c8da7044d92f5fad2cc482d465a194c4312e4ab119555f111d2d7857395afa58bede

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\vcs\mercurial.py

Filesize
5KB

MD5
eb530b5a044a306794956925e8011d76

SHA1
9f7531c4ab899404633da9ab7de6e0610da47ec0

SHA256
a142ce8732765227bed3a775a2690bfbf19cea6786694932a20bea1bd642c8fb

SHA512
ccd2ff40e1217a4b5bf91883ba3ecd4f93a01a37e203e34c53548a9734ab5af4003a586f46aacaf627dd0088a412e9c66d7d92213a143cc7e1a756e6c96f8f33

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\vcs\subversion.py

Filesize
11KB

MD5
352d4b7038ca17ffe93a35e265b52e54

SHA1
523bb3d4d9c413640c2794b139ee8a198f97bb98

SHA256
75d4ee80706a1f357779b2a55394171cf378814aa5c976cec7cabc3605cabecf

SHA512
993faff17e8e4c01fbdbe0ea391020d7e77c406f3727a8e45b2d61b7d528817bd26bd4d7b3b27f3a0feee967b0f9f9d41bec850632c0c6aba9669aab3a1a1098

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\vcs\versioncontrol.py

Filesize
21KB

MD5
9633e511d3b3f4b12023761c25d779b8

SHA1
db3d199e42699d804165fb344d88225218d53cec

SHA256
72f7fffa19d302340b5c9dddd7b14c36141f70ed4070a594175d2d7eb6323fe7

SHA512
243fcf478c3e17718ce4936c17402d2ac228c9ce1f1233e1e7ec9d993320473f84e76c3244fd5587bd360152d9c2fa2cd923a82fdfd3ae9d3ba74bb4bc6715fc

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_internal\wheel_builder.py

Filesize
11KB

MD5
52e0c2d3e07beb8b88abfebf25ba5055

SHA1
b8624ad9f42eea9be96e2bf69e6d2f61216eacc4

SHA256
0cbdc0f0b29e463fc00a9d75592e704a001280f16a7b201e5c929d5df99a5975

SHA512
6548aa4023e3b53522df8d47a13cac3526f1fca3a2cfe9256a4529243baf89daae1c4a56722f0fb94944e20215c4cd289485770fffad16f70e95340afaeb253e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\__init__.py

Filesize
4KB

MD5
ea1214af2e0878eb7463e003b25d273b

SHA1
d13b2a27d462159d11b364077c3b48492f3bfa78

SHA256
258b805ef0a58489f122b036153a79a7ebae5952fb595ebebc4a53b38ebe421e

SHA512
20afb70137ca0d191a07b5c5812cec4f68007a662a4b8e04556163ffa3fd42a543af9dc3df7037a0fc5806b485cef75ace891a2cba3585fcb91e0469eafdb8e4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\__init__.py

Filesize
676B

MD5
cb6a428fc5db604f416b38461e7f1e5f

SHA1
e8466730b1fb0039188a850f1ac70742c3a8cf74

SHA256
1a26286a0c0f12227fc51fe56f05866a80a23ed17faf3e22b237e37430201d4e

SHA512
8ef9608bf1b94b37a620b87eeb25cae0ccedd04130ea01257b01cc2a2dfa5d1bdfa4eac5aff952da4dc3989d84c686386de12b1e4df7dc522a44178419307b27

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\_cmd.py

Filesize
1KB

MD5
e4259d6ff28702fa18b2f2086840f66e

SHA1
f9f1c294b57d2432b802625d40549f21a22e3ce9

SHA256
8a2b2dd84a7326f0d5221300c57abc8859d306c89901dea2a65c5f98d6e83729

SHA512
698087631629c110e6274f1fe427a9d6e23148a5a88f95c8828156069a06e245369e9a790085ccb4e4aa20e4ced426b4b85d94292ffc0d2823e6720efd769f62

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\adapter.py

Filesize
6KB

MD5
1c55a8c9af3592ccc4a3a6768b99c29b

SHA1
feb85f5b588f7d4633db96ce7040242de2c4f290

SHA256
7c1c8efcf77f10e7a68d66eea1cbc159d37ce714f4abf4c19b69714babc3e1f9

SHA512
0be87536355bcdfe89d05fe2ae8a18a6c543238192a928accfbaf8bc05f114390e34f7ff207c2a3e7fbe0c722c8426ec984e635aa641969a91b06edd398371e3

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\cache.py

Filesize
1KB

MD5
8627f1c3c600a8070ad77ed7a2ce9a12

SHA1
38a776550e923503dad5ce04dccbdc69a1b615c1

SHA256
393423ef6b547fc0b5b8481ccdd97719cf2f925752cec4c84cab4318a331e33f

SHA512
8431edaf1bd01fca4f3637e1dddc329bebb46bedf5b4b5cc8efc611b790b4845e6bacb06e23c9a96b2ae629d85e7a8f49a384ab4b4adf377f1e0c3a0a38fafbe

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\caches\__init__.py

Filesize
303B

MD5
a854b9652b8647abb5b30ca3260d2dff

SHA1
1e2ecfdebcf43feb2056d6e6aa58d6cd5123c782

SHA256
76daebae82b90670034751968c2675f5a674b45b0c7ef141b4b410535b29fda8

SHA512
75347562f4b9f8b48c5ad4ac538eaa7f43bdce549d75717c983ff94adc610f5a115263966cba9e9e6929f3f62d6afb7c06492a1ad455b50cbb755cd35f74348b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\caches\file_cache.py

Filesize
5KB

MD5
2e8bfb617e322f8dcd040aad11d2e01b

SHA1
0727753ef791cbc8332074109d48b95a59a9e45a

SHA256
f4096699325ce9cb256fa939cffeaad2c18f1d5acc8fcceffae5b2fac8a699f1

SHA512
d540f2908d729a7e7a9a6c126587852cd4aec7706dfa27c86cd6ab9158c11edaf22b199d7e4d444ed1830bd822342157be4348b0ccb595da93904a4e853b6574

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\caches\redis_cache.py

Filesize
1KB

MD5
fefe321269efacc26b40436d7ff65295

SHA1
4049dd3d0f66a44f5ff886d4177dfc9ccb83dc03

SHA256
f6b9aac2d62efe58d5916ebfa0ba9b0bb11a5ff6bc613ff22ee9daf9e4b4760a

SHA512
87331b1ec32d54a10cd86a4222baa0f35284e3899cbf07a6bc46d079b0b20f788606cff381cd88012bcb6cb584c4ec4c37971d6e77ab654a2c60c8642ed63f15

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\controller.py

Filesize
18KB

MD5
5d34cfc44e25e70870c426eee5ce0440

SHA1
34caf91f4e24c5cb51901c8443ca751f23f2b7ea

SHA256
a3e7a31899419a928af1040bc933c98f4b7bb2253c5d51d7b95f0c0b26c2c50f

SHA512
f8276d3de1cdcffa15754c79dc7c8b3bd6243cbe7650a63f068f12dfda19abf354b62f86d94d1d47969152edd3913a7127e0da6e29c514f8fe5b9ecddbba3176

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\filewrapper.py

Filesize
4KB

MD5
6ea86f71b320920d475b9387eccba092

SHA1
0ea30fc3f74dc1424f3638908b8e02270667fc40

SHA256
493b6d1a620f06f673b766f9d5d50ec28597e5cadc302a4a64e8ac3377f904d7

SHA512
1ca27961486d141f73aa65ddf86e9ce30447b62d690c52d14cf02bbde9f20129b0dc94fad66c9021e4613823247af8de0b88405f88d8c56b22c0b9f483a1a2f1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\heuristics.py

Filesize
4KB

MD5
5b30fa2188b3871bbef92b4fc7dc8460

SHA1
a63fb4d23aebc9db84111ba8e43b0fb1a09be2fe

SHA256
2187b84261c4456b0cbedc4dae9f76d1679a22c6934f2a8b075e034a17926ed6

SHA512
5292c954158212fe3205f23f938023eb52872a5196c97a16dacfdfa2283e5f2645d0216460ae6b7c867a9ea3dcd230aa9f7e53e7f834ddb0614bfe34f1cd879c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\serialize.py

Filesize
5KB

MD5
10331aad89207954e35a6a16098170f7

SHA1
05f19d4dd2fb8b16c1228561b74e76ff38d3b723

SHA256
1d0776225950d391f33e454b3174c5dae5f99a31108c3064c42a94254383a599

SHA512
ff273f619636c4ec7e4a1829f6d449703631fb09b8d66c5aff452255dc8a22b651e8632a91caeb0eeb28343bdd2dd888e0fd345d1ba6e067a3562bddccdbbc09

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\cachecontrol\wrapper.py

Filesize
1KB

MD5
5c04d764c34888fe64cf31011d0f6fad

SHA1
b18a7cf7fafcb793f2fa944b155c690b209960ca

SHA256
86c19cee0f101904d3fb87fcb60cf700ce6ac12720e853b405274b491744be95

SHA512
4be6ed09f57edc71bfd35398b1ea172c5827ded854e0df5f8643c2c57156060b73d8d202480aea82aecf507fd8fbaf0c3050eb8becbd7fc4cefca479d3b65ac1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\certifi\__init__.py

Filesize
94B

MD5
655cde414d39f544464ab904a80e8f81

SHA1
95e3004b1a8e232b0d8aa4cc298e62f43a24b455

SHA256
2c75f3ec4f34609601cc206fe99ca2750e7e72261291279ba58d84e4e33497ba

SHA512
62f54ba22c2b3069cc3e17204b7aa217f22555ed1e627014f325eb53e818cda9b64c77de1a913862b9da7a8cbc9ad88d51363c93b33c445d919ccf65e4a5b07d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\certifi\__main__.py

Filesize
255B

MD5
49689cf432641c277156f1b5e119bb03

SHA1
94de655e7e05b44b77efbb710287fe7ac57bfe4e

SHA256
d64dc2afde6f0b1c464460e58eb5b7c0c76965d2f73617f4bb59fe936a9db026

SHA512
88850f5df40f8d51920e4f12632cb4e7a96c8f76e7737a058f74239c7a0c27f4a30187c64edb4890b5156cc44ac4d567e95ca5734d4b0c1fa49f153e6989e6e0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\certifi\cacert.pem

Filesize
284KB

MD5
181ac9a809b1a8f1bc39c1c5c777cf2a

SHA1
9341e715cea2e6207329e7034365749fca1f37dc

SHA256
488ba960602bf07cc63f4ef7aec108692fec41820fc3328a8e3f3de038149aee

SHA512
e19a92b94aedcf1282b3ef561bd471ea19ed361334092c55d72425f9183ebd1d30a619e493841b6f75c629f26f28dc682960977941b486c59475f21cf86fff85

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\certifi\core.py

Filesize
4KB

MD5
9550f6f96b63a426f3148fb1fa0e9367

SHA1
134c12ec63cc0c7fddae8794376f27c842d0ff46

SHA256
d92453e6b21c4028450db7b7ec141afa450bc40809f2a37a9758dfa93a781c8b

SHA512
26f1f24d51e831b522216eb718be1843ef3eefd62aa632eda0e861efb426ad365a429c3eea6d02058345611f28693b9d2a5ba5c7ec09f909f6d794a526a5593e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\__init__.py

Filesize
625B

MD5
96fb8b852191f4fb121674b5a9f63d5e

SHA1
fe61b185d34222ec5d43b8d8f80dffa836f84690

SHA256
849285ec51e8a9b9867249dc0ee108356a3f3989033621ce0ed61748c72f8dc7

SHA512
915f1795a8193b1d0526aedd144551976f4cfdaea82d5f195eadcbedb6f30bab2b4b58fdc9b2743c0b2065e4d95e8cd82d51140794a5d93a2204b8f7232852ec

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\compat.py

Filesize
40KB

MD5
580e6867d8a885bfba6176e135438072

SHA1
19a995a878483d07dabeceac9d15e09043a0ae97

SHA256
527fae201bf2d36c3e0f6ebb386e15121b9d76a5a02a3f67364c5596d01bef9c

SHA512
65709246168d38a4603d589869cd826b01377e74f1898a52db0e4659acb918458a5c07d3332c264d2672eb0f4a8535f0eb66b8ed85e0233d98e82c97044c4775

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\database.py

Filesize
50KB

MD5
b0e9b8f4b12eceed8eb02e3259c0c1d6

SHA1
b917eb77301bb9ccf4e0244f90288890c4b8167d

SHA256
d15f50becd15af16b617ffa12d68ad2325724627c9d290b1c8e23e904381c2c0

SHA512
51606ca37ff7c38ec3ef11bd5b4e4de73ad0b28c95dd62f86f8482a28664e7a32be143993eded0508b1f5e76f5b66b1df254c25b3d0c6a9f3050157828024e23

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\index.py

Filesize
20KB

MD5
f06ac4e48dd45cc33fc3a283c4335658

SHA1
742277dd9d3c629a01057e27fdf3ab7233024167

SHA256
9536f0dbaf2b4618fc770d6c89bdd567fd048521a0a093b714a27348530e69e0

SHA512
2252781ee9a78336d7118485087b3bcd85609686ffff34adb0b2495c314375503ad3ada177ffbd11185882726e23a4ad16ff335355d6a4c76a0047daa1fb706e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\locators.py

Filesize
50KB

MD5
d596bb818d27eb18371ad3bb9b44c8a0

SHA1
6a8d40e2148004c76e9f4e0662c981135e94275d

SHA256
a35aff33cebf6d12da7d2a5eb66c9f5fc291b45bbefd0e7c69bbd0ae73929db0

SHA512
9f51233c43859c3f223593408c45ab0728bab8acd61617dc1c63ba8282c21f14c848c847b1ceac002e8f434def049f367f875991f7139d6ca6fe72be691f2055

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\manifest.py

Filesize
13KB

MD5
640a16c56f14f6a23b43fd27e330ef6a

SHA1
4f3923e9575c2d64530fd413da556e1d84e74883

SHA256
dea7e6026570c51a94d68db70257d7ad0199ce1ea0fc61b34c03ff1dbf42e734

SHA512
06f6a11289085f9cb3691b44d5dbac13c65792f13f20413f995c9e1a4708d4e11941a12190efbdbae5e9b2bbe8af6e9e71b068fdeb7a011bcd4e97093ec95916

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\markers.py

Filesize
5KB

MD5
b0567d15136ace4ed11bd9ddfe202147

SHA1
e16af453c47612f092bae8fda2177d039df17097

SHA256
9f70df3a1d72bd9ffc116edab4cca861e6455e36256b4373d22b509688c27740

SHA512
dfe83fd0a2b12b7213c23f529c2f20c7fb7c0649ff5734049c1e474bd938ded59d801afd57ebb6585b06cdaf174318fb4b496fb53af59b8e78682bc31c5701f4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\metadata.py

Filesize
38KB

MD5
62eb79d10903c86b17f91a388fc5ebcb

SHA1
20141e9c9dc3c761d00cae930144641ab895c030

SHA256
a41f5667d9817e643173d39522574b4b90a33a8411bca02f530c10c8ac0a42d4

SHA512
c7f40e8a62b3cad68e4a1ff2e58a94ff5f83f45ec71ff967f2285a0c2ec8a30dc9496014c8110cbcd6f66d192715752ab6de9467c85f96e79760c1a019bbbd73

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\resources.py

Filesize
10KB

MD5
669a65482a124662963f972e6d36c6b4

SHA1
cb59892b325396652ff2998bfe12cf124959f6ca

SHA256
2f06cf92c73403524c6e2e979ee3dd301527f375fb04fb85356a8f184288ebdf

SHA512
e573218b6eadf39db6f9e88a4e4c785d3e77f9167f65ab081be23721d15b5d209735af9bd3d4ba679bb64b837a9be241d187508fae82225ab11f87fe89cf8e28

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\scripts.py

Filesize
18KB

MD5
15f6b2a1e7f4f89d12148956c41f355a

SHA1
c9bfa84010f3d17dfd9741613e726c3f96804630

SHA256
f3f80ff49effb6535189c9d698f5f86620e53f9c13c0928379e83ef3fa975195

SHA512
17ee06c1e7d926a1373847a15d920fcf00d5cdb835d8e5bc5cb781c7e130c1e86a3dfc3da107a3436180056d284d5d0ed27261db4521965634b82de354356e08

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\util.py

Filesize
65KB

MD5
3ceee9d5c3c546ad5c511c06332c4145

SHA1
0e861b2982491b958f0d576d2c8b33d93164eb26

SHA256
5d2ce7c448bf8b74f6d1426e695734a971f3e64b065025b5921625069acdfd01

SHA512
62b580d0aa73e32f289c7d25da327afd660105f88ba2637f590fd9b76d0164f4d606877edcd0dbc37e44c2b9f99583d488013bb85b3d6283e1eec57c50eed32a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\version.py

Filesize
23KB

MD5
37c9f53d0602510dda833ac724473120

SHA1
76563d0b04b08bd37df01c745137d22f0dcf2dd5

SHA256
f695e476e721bdefda37b246ea22fd553615fe4a8d486a1cd83c25f09bb24a74

SHA512
b43f9cbfb7a74d295013892e792aa6e80cf6574659036bbb6655b76b71f2699d52653ea051b18cdf9ca4fe395452b8a459f0ccf217bc1e8810105bb2bd0c099c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distlib\wheel.py

Filesize
42KB

MD5
7a5f580723a0460fbf61958428f7aa46

SHA1
5b8872c699f85e2f02134ce1467923e9c3e65bca

SHA256
155402bdef2ef8bd10624e7e61365ceece1698d41dbe34564cad3c297cd9557e

SHA512
325e38c5743983823694fad7e1ef9c35269c046aaba7e40476431fa7b97325c82b94db35c0d9cd4461e8d6c5911467ac7b6b59182b774026777d29aa77b58264

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distro\__init__.py

Filesize
981B

MD5
5b9b7efb166424292d033eb05b9de265

SHA1
4a736116da5e08dd8ec668e9768acf14ead0e823

SHA256
d9f1e317e49f80fbe3c8d67588787fc23a96751fd8a393831f0642d232c13e17

SHA512
9187eac2226a7e91e9f7b9e4e9f3601d0f98fe0cd5b6cf10df6a6b7eb5db993eb06aa18f34fb25796a0612d12c1a8d3a6a29f8812f336a87bc5ec23981eed4df

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distro\__main__.py

Filesize
64B

MD5
9ba2b2b4dfc91b521f07858fc5547a23

SHA1
be9d6fcd0debf92ebea7d4c5c0331f9482ba0c29

SHA256
6eef5ddd389fa0a72264572a441bb2815dc64ae4e19d50ff9b620ae1ccfde95b

SHA512
bb4a361bdf07e555319ffbffdd483ed3ea6279449100b583024f6d371ac54861224595ee1fee1df6a0a83927b4f1203648cd65e988aa9ae6e444ae34aabb6683

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\distro\distro.py

Filesize
48KB

MD5
7d770f8e9463818bf6b8ea645aac445e

SHA1
3d81b2572ba6ceeedf490abfb393fe13a02a1602

SHA256
5ea6de7da7008434f8cebfedae76c0d79798f2f74ae064e08609af506ac433fe

SHA512
091c5dcfbf5b204f5e1902c6e3447f2638d0fd6ab4c21ec4cf684384fadc781aac25d4338c5b35d3cf30264ac5acc83fcda6ae0ea80acb77bc04bcd6fbd8226b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\__init__.py

Filesize
849B

MD5
3159dcdf671a44354eb58eb6ffb4cbea

SHA1
77ea165e2cdef8a14c86f5480659b4515783a0bb

SHA256
28940dd5e401afc8882b948aac9e3b957bf11b4049ecb9b7f16e334f4bfff259

SHA512
3dc2efb6db3ebf5c61401e2125060d0c82078907e4dd55c2346517578739b76a8a9c8940c87b61242928f02a8a0b6349b8951ce6ea82aceac19cc29ccca1e41b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\codec.py

Filesize
3KB

MD5
336c73e096e6a1008b48a5e95148b94b

SHA1
869e4e7376da170f9ef81546350ea8d0987c2edf

SHA256
3d2ea6f9799d493ed68fb27bba544c6a43c3b7910127262b4f708fb6387eeede

SHA512
1a731ccf16f5ae449ffa85b8f129a464281f029db32e827636b1127ac7decab6c8f1850709fefa708eac1b37c761096afcf0b98d11ba2b5005909875a2e83e30

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\compat.py

Filesize
321B

MD5
f1fb109a7afb20bb1a7f89fff1691575

SHA1
12bcd91fccf01f9c1199470d492033f7fe30dd18

SHA256
d3fb0e114313e02570f5da03defc91857f345f5f4fc2a168501b3b816b05304e

SHA512
f9a433f13634b130434353bd2ddfdf48676d796edbe59e2ab84cea409eaab771488ba6037347018914a7ab3866202ab4493e6e752538a23e9373c1ea2cb7e8f9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\core.py

Filesize
12KB

MD5
b689f82922c2eb5830e141486278163e

SHA1
128f498bc1c108ec6f1f07423feca88a5b036bcd

SHA256
972869a1edafba511a07feb9c615e6a0a80efb152a143bdcc31bb986934d3b81

SHA512
cb9e23adfd613a6ea2f49cfde3339e52fef04f28b194e7acdb8dfa57e8df61c986ae338225aa345b271b9ba01a899ee6591af3b79a3ccd2421843e74e5ed8700

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\idnadata.py

Filesize
76KB

MD5
278011c5fa7b65dda4fd1b0b79e88acc

SHA1
ac1a53f7e9d632e9e743ab1b38ab53de33cbc536

SHA256
76a470cadce48c81cc05ad91d6562f1c3c0009e9d93edf1e195bb563c50113e1

SHA512
2c6584f88f9c7c0ab4c9d10097dae1485a287adacc8990927b020d4742f78aa7124f448f23efd5219eefe900711d98a2fa3edf70bd1bde86b7ab4a5b9d560b59

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\intranges.py

Filesize
1KB

MD5
f67c377c6ab481b1059598ca94af5555

SHA1
0a271b1f7519ead8d311ea333a457cf87cb13b74

SHA256
601af87d162e587ee44ca4b6b579458ccdb8645d4f76f722afe6b2c278889ea8

SHA512
acbb2ceb84393bd8936297c47f781bb0e0348168763ce95786b2722ec4fe3b53a423f34ca89f9e245b1061657d4104f43d44da2af5d92225e4d1f2df929c7a84

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\package_data.py

Filesize
21B

MD5
65649194b48d79f2f8d8652d61f0a290

SHA1
22bd8e4062536bb3664fcf68b7db40414bf52d08

SHA256
4e4b742a721ec889671dd74e6b3f564a4922b25360a24240b84fa9e46a2b32aa

SHA512
1e6ab18bbb6c6b0cb765e753eaf6347a0a6806646b853f5fb34eaf32d4924878bd48a4142c123be7530ffcba9abdcd81e15f21fc08cbaf3dc81fca1ed5e6fc20

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\idna\uts46data.py

Filesize
201KB

MD5
fd1b0b091235c9f05cc15080486df94d

SHA1
2d44271dcc2de64eeb2460f3164180c5cdf20193

SHA256
d4aba4b16a8bb9c70f5e6daec9156485f8852cd22133f1f69b86b309c9cea845

SHA512
986f7708858b178969902f578b7001338463f944ebe978fcd5534f5f4267ea034f45b3fb85b90fe6def3ad566dbbb0e750740f7ee5b83190ef451c19e776a2e2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\msgpack\__init__.py

Filesize
1KB

MD5
7e8c8d7dc9f64b6d634dac9cc916b581

SHA1
1eaec261d0bb9e89fea3def7fcc8651237927d15

SHA256
82c30fec94c40993544a3bcec886dd84d3a4a41f59f01706c1a6d5198d9471d4

SHA512
1de4e7cadec47703d4a8e22bfb585b4057108403470b9c449c9367b6733bfb974021bd04d32d7f801032f296e59e84768e9e1add2e8496bc2c007031e6e07457

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\msgpack\exceptions.py

Filesize
1KB

MD5
741a33042796dcc6a1c101898f38e87e

SHA1
4ceae08460a40acdf926dbb2908ff87ab6309e4e

SHA256
7424d67a2f1da64accb100dc8d093be004e5f47b08047d326edf3338f36a3187

SHA512
24578d126892750ebaaced8a9977b01e84f3804cb484ebcdb120cead612eb2517a0cc4504fae41971c05fd39da65225931e868498f4605bda8178462ee56024a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\msgpack\ext.py

Filesize
5KB

MD5
f19cfa32445c36c327c76fae994bfc3d

SHA1
3fc1ec15915f7cb25e68cc35a1e2785546b74f30

SHA256
7caa74d01a832e352d6673ddef42e5af5dfcce4f09b02b92a499246794b876df

SHA512
c2931f6f87cd7a9834d455fa0f04e36b5358edc51aa7168c4de3e4136382eafd6612bea7954b67995728ade9cb50eabfa0abc6789fe2a4da9b61b98b8dc6238e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\msgpack\fallback.py

Filesize
32KB

MD5
c2c7d451449fdd3bdf1ee0f8352e47dc

SHA1
e685a76f589a43260c816196f57f67ecee03b380

SHA256
c1d516264597da0cdf456f410424ceb881355afadfe4fb41b51f19b58ec6fc41

SHA512
38e65927b902914ae4cb35cf1845d7788282efe60f87f74e382ff41aa4116fd3bd62c05383d53f8dd512eca298976ebfaf5c09ba39ae56b5bebf426e7ae1196f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\__init__.py

Filesize
496B

MD5
227887574a670550f7d8cdda3c302968

SHA1
baeccb3b4680b841ab1237ee33d8a642696d189c

SHA256
76dc366cd996090f569cca0addb93f7a52f5b2f4a58a45ed2e9661085201f521

SHA512
ee166e9be1d0a264be92464ea0e4b770d236509eb0535ee97adb7afda9f6caca4b68359eea077a1dd4dc484d672aa63dfe493d479af479e2d1043ba1ef39cee2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\_elffile.py

Filesize
3KB

MD5
59b6873807117852cf4820e0aa83565d

SHA1
18dceb238328bb8f16d346e36e8182c7d2612904

SHA256
fcb7095b860d2b2c18b25e35ebd076ba4291ab0c63c6cb7ff07d0545540a973f

SHA512
8401692defac9b5053b5205e5aa785b071eee73de31aa657bef9d9293f2c123aed116fb1e1060d5766a131ba63c4bca28e9b3b8b1f4045764252e0ba99e10040

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\_manylinux.py

Filesize
9KB

MD5
b6950ad2a22093d82b78d976eb68e2a8

SHA1
a6c14e7f8e1168bb3f4583893f49edefe4a5a0e2

SHA256
5e8e15d0f673f2c6ee5426d39e2d2dd424740077a2affee26f8953995f2c703e

SHA512
3a60db02f6888a1d01c59780e97a83faada07a31b095ab7a4275dc87677f987f4de2469a610eabb9baac28f75001832b2430a23a115dd1e9cbe79309c52fa2b2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\_musllinux.py

Filesize
2KB

MD5
d0d487bb6b89df7d122f768d8f1f2f2d

SHA1
7d4819fd7cc78fa2acec97cdbd23939ff45f12b8

SHA256
a7d66a35888e22d19e7bc29c64578717f61c76157018774aeabfbc9608b1bc64

SHA512
2b15e6de236c0e1c30faf916a7d2ea79d85690b14ef9c61d7a7da0b410fb2f73059601f91be2f74f5d9e65533c4f2a6199ebc2e1cf229621ea6a45c5c54a04a4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\_parser.py

Filesize
9KB

MD5
3fc3c108c9b1b8c25d23a29aa4952f21

SHA1
bba6fb5dd1e66f6622a7c9ffeafa127b510d8e30

SHA256
b3f4ef4ef0cd2b436b336401dd529385d58533835cd0fe899e439b925dcc8e93

SHA512
866345b794c2d1fa7e172a9f793a94dc055d3e22fe92eed9c0ef2181184c23e8f0d66e0bca82383e9ea867e82809c215aa9ab056562e5d030a5d8f5eff574832

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\_structures.py

Filesize
1KB

MD5
de664fedc083927d3d084f416190d876

SHA1
fe0c3747cf14e696276cb6806c6775503de002b8

SHA256
ab77953666d62461bf4b40e2b7f4b7028f2a42acffe4f6135c500a0597b9cabe

SHA512
cff19a724fac387599d98c0a365849078dbcbea65efca1ee445f158268b9241e552212a99e7e0b34394d246e3a06c999a7f1a967f64b2724ca9b623d62996c6f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\_tokenizer.py

Filesize
5KB

MD5
9177e83d6b0e539c9527b76e7e8d89d3

SHA1
575e0d0d9f6bae73faccb96833494626bd81fbef

SHA256
27abf91fb273bdbfa0f35c69ff640008ac0eecbc47400ea292bc8c53bcd7c0df

SHA512
1807198cc72f6e7bf2c3edcbc9e8b53eb6832656396c75ba59078d0bac60269c51701d1e68a4ef704954bd86a5c07bfd6cd1078fd400e86dbf4a31c74a9cfb89

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\markers.py

Filesize
10KB

MD5
59958e473aa2edcc53982373f43f0c7c

SHA1
829a5f3e14e580f5dbf839085abd327208c60b33

SHA256
756292aa7e52a7e8c398e1be5b719f2c72a3c217f522cce76d3ef55650680793

SHA512
8be9b53e10852e7cd151c381085eb62b520b32294e8253d3f1244cf8d08bc5a05925165f31b8815420a3974920b69130e5c2f699639a89d14f49d8c4f17abb5e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\metadata.py

Filesize
31KB

MD5
510b7c00c4fa0df195f5c3ada245313f

SHA1
bd647077e5bd8b1d3a97ab6e6ec5f470e4e9db7e

SHA256
28836e4a4275daef92ca828d4f2fe91cd1807cc52dc4dbd9e77a80d7300a70a2

SHA512
238cd58a14010f56c0c8229a1b1d171d17e3d0a4739992138c00358d27442b1e82bd1ae969f8e9b17b24592a2f98e52b2513cf785b835a0aed77441edc489ec0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\requirements.py

Filesize
2KB

MD5
2fc711cf5b4a1a8ac92aab0bd4e13284

SHA1
1c36b3e629a0f04f56cfcd9854e23639f2c6a639

SHA256
818c9148075bac8c8a0d8ebaba02035108d132fc641f600b8a84e65f7b672faa

SHA512
a83e245ff1a002986fe3b9088b276c764d4492b7609d459ff005153007b30aa54ee81f6ecca8cd40694a23b64beb7f5b25ab146dcc37b888848072f2f9238622

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\specifiers.py

Filesize
38KB

MD5
104368ddee3891ebb4e5f92797b759b9

SHA1
39b5f0faf524b50699106fbc76099727bb51a3c0

SHA256
1df1a07cd251bebcc2ef9f609e7a288c7ca25acfc3626730e4f121e631c7f981

SHA512
2c793ed8a3f7a8a0842ed3f207e6e1f7399e0f99e77f6afac77c84fd23d6bcf02d3042527536e84b1eadc7827a5e6593f223b1c67c6763557ddc848f0571d08d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\tags.py

Filesize
18KB

MD5
7bc5d4c2874cdb595d8f748562790eb1

SHA1
c29c6b915c9be32a0f893ef4343e6b351728950f

SHA256
cbc11b85e3aef564bbb3e31e6da5cc707305fa3cec03f0b52f3e57453892cb8c

SHA512
91a9afff34dced7bf330bf8a525e464f20aeff70e7f525782d3f55f35b652af165bcd1e7c4da735b491a929246479792f4a597812cd6c3294ca2a296fb154dac

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\utils.py

Filesize
5KB

MD5
c4fbc93e59cd91daec3b453a30d870fc

SHA1
0533992add587aa77eef203b9dcb644f527b2db4

SHA256
3407585309e500ea646adfd1b616af5fc6b4ed8b95c6018bfefc2bc7bdc64833

SHA512
8aeb1875650094d6a6409cc64ddcf0fc5914da9621d4903dd9e8be5d92dd36b6d78f212448dddb0873da81ee4ff79ea6848251d947121d2487e362aa15e0ce30

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\packaging\version.py

Filesize
15KB

MD5
ac2812fd4346ccba430302b05745df11

SHA1
a43c6d31a3d4b48aad2fd0fb9853976e95ee7658

SHA256
c04e2c495945f9dd47e87142d6fb3311edf90b04e283f7e1e071c8160f798451

SHA512
2c9bac201a1958c5be948e380b207000b50ceb8291100637978f68fbcf54e456e1097c57ae24b692263184701997aca89c394250d333f956f69c1a0fd67f6de5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pkg_resources\__init__.py

Filesize
121KB

MD5
78685324c0fa6754b0d9fef573660997

SHA1
4f42afb0433851b15d6c2d6c1744ea21433b78e2

SHA256
8eb84345b3ae6cfef842e3d7c5ded4ecfa38d8f1f697e2d9d977dc3bb965a59e

SHA512
e95cf3ee9fe8499447b68b0ca6a9abe07201aa458ba5ee003971d1c6adbfb35d2bf20e202da339d5c9be52019dc6cea8ca8816797f94701329d3ef3e90edfdf5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\__init__.py

Filesize
21KB

MD5
5e7f62aed6a5d2844bb569373170da01

SHA1
6a6535c55651a567f2c3388ec99f197ae5d78b14

SHA256
15303a2c6366e341b0359b77806dee2c069c5af7f613fd874e61f4ac000b191f

SHA512
6bcd8daff3725a0daed4a860829d99ca659561ce23e2e897fd40297d0470d14512363315fc860a7a0f61c641256a1faa8f46c69ef306c2d952c1d9dee5f3bed7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\__main__.py

Filesize
1KB

MD5
4ded91aa0011b45be56c973c162f0a11

SHA1
214809a801ca11368ef00a3a97fa5fd8f07b0a50

SHA256
8c127ccdbecca71e5e6dca85f37c6ba4ef7831a782a4d18755ff5cbc337624b8

SHA512
eaaf31f842307dcd582a8853865e188971d8d43966db28d0c720e7ee28f9fb1a04d943040345f497798f0f366130d54ea3b5aca051dd1121f6d69747bf63d42f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\android.py

Filesize
8KB

MD5
ed43cf6dfb254dc7bef27849bdc334b0

SHA1
bf25c572be665d4c89c5e0ce7dda946477179151

SHA256
c595d8f49778e963acc53d94ebee47b0db4367e210ab170452b04b977858938a

SHA512
e1772b37a4a488f63074a435367d9549dea85a4952e493e0298fa9492989a5b15a73176f93136d741991c67bcba4777c9382dcd1990c8436c02bc698d3749cef

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\api.py

Filesize
8KB

MD5
b5493d30326bece12d567bf4c708a510

SHA1
d73982f2b3ec7dea76426031128df47cec8525a4

SHA256
40161d51a736782e76d5e93fcb9dee0f50dcabe9495fc22049155de089c2eae7

SHA512
ea4bf8b49d44355d5993d66a305041df461e9723338b5fdbc0c8b35f8a24a6ffd9572b3a3b152ce5c4bf0eed5543c8623a21e7b69d0f67edc16d24fbdac90a41

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\macos.py

Filesize
5KB

MD5
33e9f8018f9584f7ef1149eeb8d8a216

SHA1
116c8b94729c9617a4411feb3541e4b5712a21bb

SHA256
c1fb6c6ecbeaea767458e4574a20ab64d9111f3fd62ae92d9746ba982ecc1642

SHA512
6b7dcbe8f6be74d971fa14924571975e45b484563216444028238e05dbd8f2f23b2616c1c0de37a5423536bebbca6b7c2b437141cea1ee844b2da9cc30a4aaf0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\unix.py

Filesize
10KB

MD5
5cfd44650cfe9ef5969eae2b0709577c

SHA1
a0e29caf2d5b3ac218a7ed5ca8c501c591cda060

SHA256
09c8bd5aab77e5d00cb20e874fd9d11874815b9a1b6f4a51dc01352499ec0978

SHA512
6473cc1165d80c3b757a54cc0e10ed52a1333b43539a565f9e0be426dad3949051c14a5ee8bd43447b6a7109e78811a15e38a6c9632ce0f81dad8d77eb5ccde4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\version.py

Filesize
411B

MD5
5f9b95f1c4ece034561433a031f7efd5

SHA1
21d175117dedb623336ad4880a945be41fe0789b

SHA256
afb17bead6518e040aceba71fc8d3f64c40e314f8f4bb7869c70fbcc42b7281d

SHA512
5891d0335d020bf482ff130e5a44c238a45437f900bf9fbac13c95b4e051259b16a7c1a146cb1f5d7c585609a39972f6e416a491cda55dae1cbc2ada1400303f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\platformdirs\windows.py

Filesize
9KB

MD5
128f39361500fcc1dcaefd721a400356

SHA1
920d92beeaa289b22c86911d1bbb942ca79cc167

SHA256
205a62a21501c313ed0b39722b036dc725b8264f2169ae96f28e7d99fac35d5a

SHA512
445f1c0b68a1c671682e1edf0bb9d6c3046eb9d793a33ed6f633f766e68ec9878537eecf929b2a3e6e9cb4b79cf23c1cd0487fc9f2fbbb38b4343f54c559d450

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\__init__.py

Filesize
2KB

MD5
aac1bb0068e2c8510c1193862675d407

SHA1
40a7d3e4642ba18dbf22fe4a83270ee4c1d8afa3

SHA256
ecdd6889a5ae970fe70ac4d8e04122c582f3d79a56639bb8b8f005162fa27a55

SHA512
497748c75c4b71f4ee49aa942d1edfedccb72604dd1fea045232d2c8c5dadaea8a5339c8236607fcbbe9e3f1ec444fb0010848e36ae7dccecda56c44a85f7da7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\__main__.py

Filesize
353B

MD5
68617ba5486f07a5a17e2df244285ac7

SHA1
7b671d8c8b1ef03e5a2c14d576c22e98d7fb02e2

SHA256
8ac2210712e0eb99cb957ba41b856432e3df35d77b805cd367f47fcf743c7626

SHA512
3175f8a26482b111cacfbc692abef25aef054794d9ad8065e3a3a0a81671c28ea29c1b0f48454b781f27e8334f7b4f4c24719be6df0e0af29a4bc92200d5191f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\cmdline.py

Filesize
23KB

MD5
ff68abb555b05cae9d54ddda4096bf0b

SHA1
94dfe4a002158ffd6e92a3a0d08d6df5f29e3923

SHA256
2c8573980ba7964f6c449269e783b8291cbd18320de16bb5deff69f50cdf18f3

SHA512
7438436b2d9c2af6a946055684639060a6c57aa2c413146d93cf859d6b8374ac5a5d27bddb7d145744f072cbaa27b4c450ecb80a8d123ff00c05f3bbb05a3f98

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\console.py

Filesize
1KB

MD5
4ef6210b389448a0b5883f2ac7d8d261

SHA1
cdbac78da7cfe684c72f1ea38943a1e66e173c07

SHA256
ca13fd52c2c056658a5507f6e38e8925ec2403b0225de7937f821e8373a2d9f5

SHA512
05678326900ea55aeb3bdd7d2f353628583011b88d2ab76e99f23d9c7c3d803fc5468682c5259b44f22f21efa9e8d4b03e3661d4fe3f5731d1cfbe6073ae9a95

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\filter.py

Filesize
1KB

MD5
aae0d442f95ca2d64b8bc24ccdc3a145

SHA1
88e2f80e7420d3385dffc4d590c8a7746d96fb47

SHA256
fc00cd3c2b240fcfc69a87478bafcba1580f537661df7e9a0424f970e79332cd

SHA512
4fdaf4031490137c51f8b59c7714d6bc4b91f49548ea6e031328c89b31d9711c96ad440bcd0868face0158ca08180e2b4a88e0f515d58c339f35fda0b28c4152

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\filters\__init__.py

Filesize
39KB

MD5
958bd06326b235be7fc99bd0f58abc72

SHA1
f91c3a6f1c7f848e3adf8d1bf0c5be53b088bf45

SHA256
45d79d2b629629794ac11edcbe47ebdcd523f588994203208a544c1548368cf0

SHA512
33a03400f3839c4650a0bcc2c4a7f12f0cbb853b942bd89dd394174564e5f517bb690f2a612299a694197f91d1edd71cceda32af0d8499389ead46af832ca9a2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatter.py

Filesize
4KB

MD5
731b07559e6aade41a281617f7202fb1

SHA1
9d64b6124007fb61d9b7c9424e6cab047404992d

SHA256
8c35814e7765047d99e486191550e73f4aa7d426934234d6b7b8801ad0a72448

SHA512
fab98574cb65f5a0b2ea063e07ee8cd373c346db1cc17f8ee8c5384641508064e4bf0f04d5d122a00f6ea72a272dcf5ef61c09621c0b858f4fe1c4c61b05d81c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\__init__.py

Filesize
5KB

MD5
21fe60364f0c0f919e1a1602de7dc80b

SHA1
46136d7e6364ccda06d6e4bcf9ee87b7cee6fb19

SHA256
f0da3e354b3cac14d2481248bf8852110b76334705078870013d2c9d57364061

SHA512
8ccbec69699cb0d103aba79b2b593ec67a4498bb1ccfa7799776993112e68ca49b8867ba18563a4a3452f3e13c87b6f2167f30d8984fb4353e68669b2fc66925

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\_mapping.py

Filesize
4KB

MD5
75b034b791db82c44433d5f0e25287a8

SHA1
70c2241423f14e151908d1e41ed0f70154f1858b

SHA256
d42c37ec5b9094d69c9f144a9ad94f5f89f22e85fdfedb64a39670b1c354659e

SHA512
07acffc0c0fdfb6c2e14fbc7ceecd127ef14ff64955e729c5dab7cadbcb1640207094413b59df9620bdddf89692fdbe5d3e031b6db5f68107c0fd564b7a7c9cf

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\bbcode.py

Filesize
3KB

MD5
3ff16049bf3ddb4c99f2242f0c8328db

SHA1
ea87a73214126ed3f58fa3d8b7d14c53193061d0

SHA256
dc940b238e6d72b43f91150c8ee69be82ec76f45d4b1b556aaa6d29fd70c8e42

SHA512
a48ab520ec1cbb1e24e779de0ff21b3a0f5eba4e9f876eb8bdf2842292f24dc72ae16393576ccf7ebe651d05bdce78b2b6a6c477802ba05a880f2a770928b78b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\groff.py

Filesize
4KB

MD5
902960cfdbb6f189d85952752733c2bf

SHA1
052f88ae537aa4ae71f85cb54ec404e531697eb5

SHA256
337f64d0f692499467c568ea05254f905d26bb5f95afb6e6e91b05becf8234de

SHA512
3e967bf46a071fdd04d802717aa0a219947ef16bb052ddf20f9e2752cf258ecd512f68e36a5b9fc50e83a52077f3bc80aa0c9d7ebc7c568358cb98e6870fc133

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\html.py

Filesize
34KB

MD5
c65615b8770368b50dd3b735235bed9d

SHA1
0e29ef053dd0a8616e45da9ccc03e275b4540d31

SHA256
484da3737602a9b312deb656f440260e501485d571279da003876295e12f0865

SHA512
243e3202e1e6495db031f4f160900c69e54a575fc55a74a89dcd727d4b0e4e5148e197ff28d0c99b6bfff0bd9dbc658e2144c4fc9e8f2ea434f5c8bcd35b006d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\img.py

Filesize
22KB

MD5
bfab99e738d054e0c1379386ab23839b

SHA1
daf1d167a5f5e6b486558520733a1f5de434791d

SHA256
330038c563cb3b087a8fb61cea81f38eea923edd0cd5f879afee414c82147ec5

SHA512
739f8a24ef3ab7d66de7808cf07715b36c5992560e6f275fe83014c16d08fe4f1e392a2710b4648ea57b2b8e00424cfdfda5d28793a6e1225503dc253806b9e7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\irc.py

Filesize
4KB

MD5
ad7f6ec03825f1ca06a24320c0ee3430

SHA1
3fd2d378b9c0e3da390bcda350baaf1f98345c89

SHA256
769d59d25fce6c9e4d161f4c86a2c6839a6d1b986026a79d4f6564badb7dbf43

SHA512
0d067f7a4ffe24d9f3f618486d06447e28e349dd58bec15c7e7835b2253525e551847e55295421831061ea1f02e302f7643b178ac4dbc2cb0b2383c1165aeac5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\latex.py

Filesize
18KB

MD5
20f0fa12dc26346f064130cb783771fa

SHA1
75d927eb42e391935863e3735a570df94daa27ec

SHA256
5cc9a1382a94283050b46e66189340158c40a6a682e69ba8e5c3263df2b7f78e

SHA512
6b75dd887720eb919270433aedf7041ac0c59caa5563f61d23f01074ab74314afffd711a545cfe32d601da6c7bfb98804fa38bbfb2d5ea066959715f0798de8e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\other.py

Filesize
4KB

MD5
9f9a43134d8b28ee675e7e202c643ace

SHA1
b94757bb473185f43e64f93f3369f659b661571b

SHA256
e7a3cc24e9628a7fab01476744cd22d70b15d467543ddfddbd0ab4fd43df17d7

SHA512
b47f6a49fcf8e80ff749909971c0115b3fbd5a7d668192d172b438ca4f175bb3cb0f664a0bf79f4e003955e80343e50bf27e0c01a7f135e92a49293c24f70f31

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\pangomarkup.py

Filesize
2KB

MD5
8caa134a1479afac5def944539770116

SHA1
abf7757aaebfd508a2a51a862570910f71374513

SHA256
cb5e94d34695618105a5e09f19795805231a706e36e426dfa06f2829b29e8088

SHA512
e8e2fae8f4df2a85ee0dd7a7fe03c2cfeb4a49ada10bd623f052d7fb6b1493a919d43604e53248059f5e4f37efade7823527a2c916ed12f9f79a4d1eb1b2f232

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\rtf.py

Filesize
11KB

MD5
584f0c7ee04420aa8e32d8ba5428c887

SHA1
5bea0fe15ac7591a100579ca7848e01b47d026ba

SHA256
653f7476670ac896e8201d2602b84bec8844e3aec65d13741bb4005201b4dd3a

SHA512
22e3d7f5d92675208873c9a55b9792f8bde3658d3b55ef015720aae7d6ec8cb39f2b8dfa8a1e4d68bd4c1c3bb25ad78554b49da75940d0a6a866b29fb1885f7f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\svg.py

Filesize
7KB

MD5
7dc5a5cae48be5baa2bafa30148c701e

SHA1
85604b64232b65e39055ae05836a8d7431b11bee

SHA256
28ab22a2984fba91eec66d12a3e32c6d0116393e7820089217b8593e6c6d2971

SHA512
5b8a1d7724ddb1b190e611e2413f523ea7fa6f397c287552b7a0948066ae8a7633a8ad8e30f97db2a813e630e0d29d088ffc731f0404b591bbc98fc2ea371b89

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\terminal.py

Filesize
4KB

MD5
bbc1f17dd2b1369dd150031b168e6b35

SHA1
e333fa865342a961bd6d3e2c11da22a66abee650

SHA256
0288cd1b83252aad8be88b02fd59d71eee006c70819fd3ada20eaee395efc5e2

SHA512
0e0085ec7018f2d80fa70749889950f4cb00397302ac5cbcea11db419ff7531b581d8ea440dfe1e596676ab2b7ece8a1a69c23015973b249c636d937a2f083a9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\formatters\terminal256.py

Filesize
11KB

MD5
c4f7e96810726648a18ec415ed1d5b62

SHA1
00a971d9800dbf65bdb601b9aec51865bde90e8a

SHA256
90690d515a37169c23cad2034b489fefd12e528ae8029adc5adde282b708a93d

SHA512
1592a9f8e75cf1207d1fc302031ed9f5ae438131d448e1ed6cad43bff0267318ff68a56e0646ae0fc51f995d891134ab28af97f39d00e598dec6295441d5a1e1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\lexer.py

Filesize
34KB

MD5
6e3198a4018ef47a6af987a0481a5719

SHA1
b1042e9d5c476a7b1bbde0c436dd15c874aeeafd

SHA256
4d81c3b7ffff80d5b86b14e5db3bcf65f7fe5508bc7cf68887938a45c5528d43

SHA512
b76fc1336acdbf69eb2a0e1da1fce0762ba097f710f0656163d5e89f5ff991e0aaf58cd52ef58d5b98139399b1da594213d60e60504093119a793253dd7bd7d1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\lexers\__init__.py

Filesize
11KB

MD5
a53e993acfac8ec4959211e0c22ac5b9

SHA1
8023fe8eccbd7e60e468d66b8295e814550285dd

SHA256
a48971c9026ebbfb3287d944d3cd1cabc71e55b11570aa74a2c0055397dac095

SHA512
a341265c0bb0d8dc4ccdd1ff44eb62c40c8c05c51291034f2ac1d8362222cb52e4e8fb57449992c8798ba22f4434dd7df0f4b3b3e96e40f09b2c776c6059c970

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\lexers\_mapping.py

Filesize
74KB

MD5
6caa76eb94348460b838b4ae35213523

SHA1
4ca4b66f4e48a4d546749cc8aadd462359089427

SHA256
eb5fa1df3af5d379b4d4e4b9054abf01f5222fd608d3a55eb3d8a943b938bebe

SHA512
8b702a70f780fb951c44d5eef86c9676d7352e4f456a276739a55a75e260fc26c85ed7b1d492eae08557c50a6e3e6c31cdfcd7be80dfe1be5ccfdff9497ca65b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\lexers\python.py

Filesize
52KB

MD5
300574b4615b5e437e29ec20b62aca7d

SHA1
14313f1ee64c0d3efe8e72338fe59925b836f544

SHA256
d89fd826b3d3aff03a7c963fa8a88abf41a980fc0732b94c49ea39f6a3777dee

SHA512
c1d856c6d8e3302b5713bfd0ae7e346d5ebc2af76a0329943497e49950694b0ebab10e09cf2ab5d0d1f7ec10c7e48a9d73f24258d1b1954355d2ee882cdfda6e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\modeline.py

Filesize
1005B

MD5
d16df308fd88d676b26417e392ba929b

SHA1
61607c3bf13d97f7845ee2fbe45d04d2d60c747e

SHA256
82d4586414be08a3820d71e1199a80a5ba0705a670187f20ce73773ba9eec63e

SHA512
ea2551774f6b7dd775d4036a387b3a679a52fc8ee886de3da19a346df5a706a0e6ae453f9ba179adf903e3181fe0b88854840d82113922e62e6fd75d4b1bc1dc

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\plugin.py

Filesize
1KB

MD5
1ba60a1881ae145ebc4e21074365d44c

SHA1
661a9a8764ae439e46ce4af785b5071e26cf6c85

SHA256
8a8789dd07a827e510859a58f492fbbdbc6c4d5bb0c0cec10aef896fc9cdd005

SHA512
5457a5cb33278574a4fb63e4b814c24e8e9d95d18b241550ee287b342321c4b50963d054638b3cf3bd0784622d7d5f0f416597d4f48b943e32140156e4f404ce

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\regexopt.py

Filesize
3KB

MD5
fa41725456c9ace3236752ea7257a681

SHA1
7743261fccbdb967dbbd879fbc3fd97dd274afb2

SHA256
1e4cb8101d77ac85c41d050d930982ad8aad2259d70de84d477333b5a7d9e37c

SHA512
686716b8db57d7bb723ee4bb2027d7c68453b9b15df491d0125cdd7b95c075823093314bf41e542b480c3260c64cd71a42e419e8cbc4c78ad731c014c920d876

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\scanner.py

Filesize
3KB

MD5
2bdd592276b202318b041c182d310675

SHA1
8e6a47d991ed9aeaa6f5ee37434992e66a5fe5b8

SHA256
343cb7a1f2bf7c74452b88480efc696a61bcef569ec2a72c21beac8138bb1619

SHA512
a3ef5973b2ff1137292325e49a2f0c19540bbd75d7aa2d4898276dec0c7242aa3403c09b2cac31c7a1c39d131e59bc85d614838f932d092fb1e1659312b95c7a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\sphinxext.py

Filesize
7KB

MD5
1c9fab6b9ae9474c2260dfc9312815ee

SHA1
ee0ffca3b8a9fba5b2e9287dfd388b9540675864

SHA256
88ea6d24172a3863f0304276a7bd0fbf0a593c819dbdd67c771beaea4cf10e00

SHA512
a60d01f13b824dab8cd9a4a3e8a5ccbc8117841c0532c89cb847e1a6535ed76b48c8e2b5873ef84642f02938b61e7498a4356590d1fe6ebdfcd47daeac12a3cd

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\style.py

Filesize
6KB

MD5
8247079cacc6233d1c48a942212bfa41

SHA1
38fcec67a28098a81e93e1ffdfa3347ecdfdee3d

SHA256
ad2099585a60d7f0f014c5c35349c456601c047a6e4067fd471bce3cf42f28b4

SHA512
89880d471f36af7268cdbec3c918f61714ab80e719d40d0455fbf6a66dac90e6f42ca089914335af742fb02e85cc18ff8c6b3880058cfcf34c14244c9b9cfb8f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\styles\__init__.py

Filesize
1KB

MD5
c981cca7380badd551ae7d185fb5bddd

SHA1
edfb6dcd0fb9fd773de266d3d2b225701abb80af

SHA256
a9493aff5cf92a64fc11d2456588044a61ba3ff1c917fdaf56b0c3ec74821986

SHA512
69ab87b99e4b758d36a880a49baebff49327a3d896aa74bb27a36f3588144d3d0fca95e5ed6ac765f12e79faceec6595d67d318071790aea7604781157644d09

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\styles\_mapping.py

Filesize
3KB

MD5
a279da650c5d1ae77a183e416e8d3bae

SHA1
651359ef16bca5a164c8eb41a6a1fef2593860ff

SHA256
ea5a2f154136f6dcfa12c5775d8638860a3327bab524bedc7cedd43a58274bcc

SHA512
203a73759d8f58de559a3ac90726bd463ada49dbc68fb6045d28ec72157aa37ee9a15e1149ef7a8bcafb842785e943975568b98f17f81c0a986cbe86536d9214

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\token.py

Filesize
6KB

MD5
dedc443bc7d79c9b8b8acb0e9bf66d73

SHA1
fd9e68b884c6ee7ce19dd510759cc7724079645f

SHA256
a99c13ecb48fcb96016372600e3badeb8d820b2ec9750cc07e6a83f4d993e63d

SHA512
2353b82b4aac8b6ed5d7039d77350a9e3e21323275ffc0edcf19839c38aff04491266fb1bf39ceb321de293aa9f77a5bbeccfdd97a50d9ad0c129b1ba55d037b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\unistring.py

Filesize
61KB

MD5
b9a114571aed7e22cbb35f001563cdb6

SHA1
72db5d8a70be596b7c459e0587d5f74fc8037602

SHA256
a797358be1e1a088567a6cbd094b1a37da37f68a266073715e59745dfc3ab440

SHA512
aac6e604a58d30993ebed1eb19020c588509826162522da3d09867f1191a9a927a9008a6e8fc74923ed0c4948519469ddbdf47aa5426bb55e7f9e54703c2a7a0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pygments\util.py

Filesize
9KB

MD5
9159f4ae1f1ce81a04b8f4d33d957cc3

SHA1
ce7f22d03f79f5c403c92c35ecae5272d1dc7b54

SHA256
dad8f69d2d57f7f3a972e4a37fc74e113d9b0d5661b3c70429dfee4faf85820f

SHA512
a57b80d49e4fa9781dffbc934bbf070b29f0cd04d499f8b47bdb1748775c78419c52fc54971684ce104651be057e1f34be7aa7d2c3be56561a8ea253651602df

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pyproject_hooks\__init__.py

Filesize
491B

MD5
80c061091a6382818848b1b371dc2eb8

SHA1
df65d428064b7c8e03726669e00c2e42450c227c

SHA256
9027a19b2d146816bda15303ed9219ae7b307e73f72d767996f9cd2402f92413

SHA512
680df062d390cf1092b0a13d8fc1013f557c272c26f58c8ebd79a8cf625741705fc7517c47bdf019f866e75d8b9f16a1e0ff44cc1fe462db6c3c6ce55ef160ba

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pyproject_hooks\_compat.py

Filesize
138B

MD5
6d627346b01079d32b8133ae1c9b6e4e

SHA1
9141192d3b9bb789d002285a8cbfd788642aacee

SHA256
6f2e9ebeb627aa48ac88cf8c41cbce2ace5b80333394e4a066a44736a7f4e331

SHA512
90e0e380125496f78fcc9dc2ae56892937d1079cbed280b7b02d875058df172457f519ee7c6ce1c77e2514a45b671d544fd2c58d7187a24c0063981bceaaceea

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pyproject_hooks\_impl.py

Filesize
11KB

MD5
7006214c597ec31bd685c4c7a809edf7

SHA1
1e5a9d8dc86af078f0c244032db980b0fd11c34c

SHA256
eb5189c73422a742089e1b8eebd648e466cd43cd97103501ff51a0e7f2ad5287

SHA512
116b645b6699211dd08e27ec87a2613cf72cf5cdf92f47ead33fb36ca9bfa72b4ee02222dee9aa783d83af074a1932c3e550b8e63825790401d31246534106ac

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pyproject_hooks\_in_process\__init__.py

Filesize
546B

MD5
44ae0a51f674af325cf2b1913ee32db7

SHA1
d594eace41476837a85468e99af3a31514cfa7c4

SHA256
f604004e9b5b1647a5908cb439f5851000b3ab15c93100d6087f6b04e0195704

SHA512
7a9886dbc641abed170f179c9ced022665d87159dc90a8fe9014d0e8dd20250548df80b8687b6439d51ec493ba853bde088a05848cc72e406e543c3719df1b0f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\pyproject_hooks\_in_process\_in_process.py

Filesize
10KB

MD5
4d0d470c8151ca2901f01d696e0e3f8b

SHA1
b188aae41334ab7ded5aa1c9c992779fea0127eb

SHA256
9b66f7e1cf75ec85b9a3e43fe936081e5b0af6549494d8b2ac84d3507ff3c1ec

SHA512
4bd82327241c5e7f70df26f92e388c4b284a42cfe1da085f492efd862b58522438c877f5e5cf42b318526aea593ba832caa1a53836614ae9f28d28724e0fd5e3

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\__init__.py

Filesize
4KB

MD5
16bd0c94f45fdd2c2112256c860151cc

SHA1
bf0ac9f844a59f5289e771352e5e7445964caf78

SHA256
1e507f1f386bcc6b5f0ff69a614c14875cd65cb67be7f6022f28adef9774573f

SHA512
485e8c8a8c1f5f214a08321e86725fc84e1f5a4e5658a88705f8c652b7308d3abc9e15888d11cc6f534e3754cf3e714495706c743de0381fdaf79d5ac69495a1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\__version__.py

Filesize
435B

MD5
cf7b49d0b713b70f100f710cfd501ef4

SHA1
c4d5e1c3654e68dbef42e721f0b77cc6cdf50d75

SHA256
1557e09606663509e660f5e93a8843539f05e4451bffe5674936807ac4b5f3b8

SHA512
abfbd374d94df3dad2b9f5d31301e373703f3452f2c10d1ecae5ea4c8802a96129162e125e29bbe39a18f0a7d80841886e9a5e1a2cff51ec5238171aee6f726d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\_internal_utils.py

Filesize
1KB

MD5
9dfff48651ad4c1cd36b1229e869d749

SHA1
83a8612a7fe67477b5d61a8c4358d22d5b099f7e

SHA256
9cc4329abe21b37d93a95a3901b0ab99c24486f3d487bc57965bb2ab0b252e24

SHA512
8bc4699bffe4b41b11ff43eef9cf33b668127db9f58d8db0ea6105150b01c7472e2cf6e834a0f45133f33af9a54aebe3b1399ede383109d7d01f59455db61001

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\adapters.py

Filesize
26KB

MD5
472b069ac21280e5cac4b1f4d8532d74

SHA1
1d9144b5df4978594c052edac5d2dd4601c1550d

SHA256
27b55e571281bdac1bb655f60c4455a34e49f415d371660b30735dd4169af9b9

SHA512
6df83e882f879c42fb60d8394877cf439939e2bf0a649a1cc0776fd4cb8bdd7944f3a888f05d634dcd65b51f8f9b6b380a4ff302b1d460c2c27f1c6871307db2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\api.py

Filesize
6KB

MD5
ad3e6e647b23b98387ffe0738d965615

SHA1
e2acc6d4ace747f71ed20a4135f6664a93bcd2fa

SHA256
fd96fd39aeedcd5222cd32b016b3e30c463d7a3b66fce9d2444467003c46b10b

SHA512
25ff8f68c8d09ff474bc654580598efc70773ac908613082603f47b6c64dbd394e899b91bce8103277d9669c7c09a1d35c74d67ac0b51af4e1b35dba896a194b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\auth.py

Filesize
9KB

MD5
dcbec6f5352f225981ead338d778419e

SHA1
bd96146ba4180f816dbd9c693f0b11ecc21ee214

SHA256
905ef9b6a9cb72d67d31ffe19bd4d9223e1c4169cde6ec51cfca16b31e70991d

SHA512
ae6eee0ccc99712deb2896cd783627e9bc6ab12191c722e70fb2727043aa099e47c14767e9efb8d12b37dcc83f40e2ae1bcdfe7502d8bfd0acf8b044d21bf127

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\certs.py

Filesize
575B

MD5
9479d3b9c5e5aaf2f1b5df8d71938126

SHA1
75406468389902a6d906e6e516a00485d171d33b

SHA256
3d53e8a01d233f986464450b482c02d3be39df65056d1d8fb60bb4239cf0982b

SHA512
6ef471a5f76b16e0ad22685d51ee3d64d6bb7dfdb4397d8a1825521bb977bc4c181ecfe000805e04b49a0b4ba99123e0c1c8217727d56c6da6e45c2b8f2ea183

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\compat.py

Filesize
1KB

MD5
475ff3a78e60c4bf07e320b3b9548270

SHA1
bce2e637b16736668b8ae7cb1e3f2c1dc836d9b3

SHA256
328f5ff7166979fa1df199be9fdfd2b497154e6c12ba45d1da9dc8432c955ef5

SHA512
96fd8216a7d74e0f32dea03b49b7710a421ae322911289aad3564ffa81d089bbbf513695cbf44afe6174c0100514ea4e43a51ea35ed5bc02c218566b600d0fa7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\cookies.py

Filesize
18KB

MD5
003f4e0aabd7cc01b91224d1fb89ee21

SHA1
904a118f4c9b48d637c5cce657018c2486513527

SHA256
6cd8be8aa123e0d3d9d34fa86feac7bf392f39bccdde5129830de0ea9692dd7c

SHA512
9d6025a0698a287bc224ab424fa409bcb4b36c01ef27b9e0a018ad995b66ed3eb429ccad5fc26703b8019366bba37e1037af54dc4d1f339f07820e3b93e2b9f0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\exceptions.py

Filesize
4KB

MD5
f5f7ebc10a5ecdcf66ef41ca4e701b94

SHA1
34d85bda13b63a95dbf53fe4c6b667d2a284fa24

SHA256
0f5c2acd85a77b5992dab538ded3fd09e3751bb400cbb7aa2fda3582877a123c

SHA512
45d570b2a5d94b8e1bdd2f5f10b3f62ab7ec02341a7b405562740e1d2bf67fa5f927d7d4f53918b297ce04e345605e95729bb8ba7fa1bd7bba205e045d32827a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\help.py

Filesize
3KB

MD5
312a19f0eef838a4ed0631c45fff5bec

SHA1
bb23ad839cb6ba79e4cc055f90a925b0e9a3b908

SHA256
85129a7fdbb41bb7ddc2ba8c1ed177a06d7a44a92d45fe8a8b0b52ab6168d7fd

SHA512
f2047059e287f56e16fefbd2009ab96087613cbfc0a53c3e1675ebe84a2bb2ab34c48e9feec33218e1ed3d230178cc352eea3d460384463d1c0b9c3772ebf24b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\hooks.py

Filesize
733B

MD5
94eb29001b47e2886c00d1e201b8733d

SHA1
6c2aebe642d6471e70534c45e039df709b23435d

SHA256
0a2bb2b221c0dfd57951f702057148c7cdc8ac3a6ec1f37d45c4d482fdbc7ed4

SHA512
15f9f577f2a490427bcffca5c217cb8d544431391942264352679174621cf2db183d293f478083eba592e1aff059cf7f41f24aa1538933990819d4b3e49b48a3

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\models.py

Filesize
34KB

MD5
c9f7cfe903eda7e6777d7878a9d6041f

SHA1
43d0af325a937498eb00dd2447c5e314fdbd3b06

SHA256
c782b80a61fe942d25d8a6fe88f7cc3787515f11c471b39a11604bfe2d3d0302

SHA512
f15db35271a05e2e9f48e30a585673e88456acf9e6309f80bed0444a16fa2358ee9b678c589f940477dc46d6463828548ce9e5e2541d852cf724389747f99628

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\packages.py

Filesize
1KB

MD5
464f37f17e9bace594fa21cc4c474253

SHA1
954cabd8a9501257b5bd8319a4ce6de54796ca26

SHA256
fd94030894c9f123f79155ae9d2a81b1164d3f38f673558556a6ddaf4f29cf75

SHA512
0d4edd149f697667a4d9e4af2f7f49925937da65ad5440c379867670aeb22565115650979eb24c247bad81a1973b5d68cee93ecd22e03ef8b08947b90a53ee21

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\sessions.py

Filesize
29KB

MD5
fd6fa1069669812de222d61d2288ff75

SHA1
93881c774ba82ab62ee50d4a56c7b6f64cd81683

SHA256
ca44c8f145864a5b4e7c7d3b1caa25947ee44c11b0e168620556901a67244f0e

SHA512
781e08fb8a5194fb40480509aeacb4bdf84439a99f9501d16e03889bc4d76399b7e0563d8887ed7f948f96c8775d3850880346182431362634cdb5008ac2ac93

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\status_codes.py

Filesize
4KB

MD5
a5e303e512b9548db88263894ab73fd7

SHA1
cf59c07d2dfa28475074b8592db1fe8024a02b9b

SHA256
889500780db96da4ddc3ee8f7c3d1e178aa1a48343251248fb268cab1b382c42

SHA512
583146a07fdc94d21093a4025ae133183528f165fd75134c1861a38ffd53f6a76a0ed8189a4938736a1312ccb99b7c7582e4843e656273ad6ef63f2c3710eaf5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\structures.py

Filesize
2KB

MD5
077948910ae6fb44dc6e58d3d25d6aee

SHA1
b5c2c740b9ff7d27a83ac4c80e3ae741aa33b5be

SHA256
f886e6855cf4e92fb968f499b94b6167afba0fd5ce8d1b935c739a6d8d38d573

SHA512
b9256700252d4330095253ff3abaa885cc97967aafb39eeb6720db90ad55f6a9e70d925cdf0b77ca15e9ded6faab571ee2660fd2fdba038dad3247798fc22bc0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\requests\utils.py

Filesize
32KB

MD5
e00aa2da58ce2a465fa10d81717cada5

SHA1
735f3ef3c60d3fe922745d1142dc2fae6a61bacc

SHA256
2fbf6f9c56f32774852cab49c29a167b8d53a338b746566ff78a58d53148ca8c

SHA512
0603f1b5155b1dd4fc9f58400d171b234734bb6d8bbc7e630d617b496925de51cc016db524da82d80e66264782728294c72999ceece68fd4566cd360d994a8b1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\resolvelib\__init__.py

Filesize
537B

MD5
8b67527ebde2b292d95bfe62ff92897f

SHA1
c756151b98834a600daf027ed3e9ac9c12a15f6f

SHA256
879d3d4dd11ca5be7ee382689da5377b1d93335e465412e333d08d08fc274d3b

SHA512
ec0f64873cdd2be43515ace09a72c575b4dd2516dc5f9839686912a70f69da5009dc5b04ba5300ddeba3b739c5234eea98c43af1408218b3ba7492f420d3d124

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\resolvelib\compat\collections_abc.py

Filesize
156B

MD5
8ccca9124787135195d14416ce79902c

SHA1
707dc63c9b0961b36cc1127216af38de6b1b31e7

SHA256
bb2f31519f8d0c4c3dd7ab6e8145e6f0783008688c3b47fe45c767a647d77ceb

SHA512
2f5ea29e328c16ad440198f3711ec8a6e6cc413c22c297e34370a77f4c373031a071dcc62929e092bf0abed5930a68a5c42d2fd0788dc6bd98841199201c7764

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\resolvelib\providers.py

Filesize
5KB

MD5
665e6250c74f4ce90b856fb8bb4dd6ea

SHA1
d4753f2ce0f84b8ece6709862ca9c5859d391a70

SHA256
7eebaf56b09eb6ee60b313c1e37111ca37cef1a45e4b7ac5407a4382222d6ece

SHA512
30ddda3174429aa2c10d5ff137ce9c3645c7a9f177e2b23a0b3320935e0c03822492ed3ddd6f3d153d34970fad1cd526176796eca12e63e403fd79062abf6dc0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\resolvelib\reporters.py

Filesize
1KB

MD5
5bf3f0bf3d4f94b0339e60d4d4766447

SHA1
12fb5db25d45218af1edf7a377251b2c5e493be5

SHA256
4d26d1996cd3736eb0d2082c5756f15697960c1f10348adeeadc1897b1886411

SHA512
66656422f188aac638aea78769f2fd9b51588024a883dfe3b3873b094317c1ac68fd93de2fdbe856d4b53c7e0703195bd16f0b36fa49ea6789ce7a5048a955ad

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\resolvelib\resolvers.py

Filesize
20KB

MD5
638769280aa3660d6c298202b1a75a61

SHA1
81c58b0f42e795a41a832e6edcb0ef3a8667af3e

SHA256
1bcaec2d94aaeb883956622afa507b51c209d608c0c48409993178444665790d

SHA512
a610f35824d6fa5394283c618141ae3df4241231fb4768c0a1381e9323d69886934c5cdd87c236846ec62bc7e2780a0f868f2a81bb39042d25d0fe8410dab8e7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\resolvelib\structs.py

Filesize
4KB

MD5
1de4b6ffaf2082a2c0afe6bfdc947054

SHA1
36dbfdd47591385ccd103148bd024f7a1e81c690

SHA256
d3fd7f5cef33fc22e17a03f75697fd549df325c7cb9b434e1d133e8b4624cf7a

SHA512
e7cc50fa1c2e0b11f103c8e365dcd4e4d0d06604f1a20585ddba2d3ec8d1998338aa8877d041444fa62f39719a10748e05f73508b8285043f7413f9a29a39439

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\__init__.py

Filesize
5KB

MD5
f434655ddd93988a30786a6b71ddcd9c

SHA1
d6b97fece02385eff2b7a6e2145299c171772c80

SHA256
751c6320bf926c5558d2adc88d232b7e00531eb9b52d90e02ceca0541c226197

SHA512
44b4f1e9eaa6b6c8722b506c1412578607310cfcde524ba47ba34227c026fa1c653a6b0d9bc5616dd01edf7a1d5dc921abd7568744d4c5aa111a67090abfa709

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\__main__.py

Filesize
8KB

MD5
02e4c99e83b2692660a46e7f2ea41e8f

SHA1
537e7ddc00cb1ab1cfbbd3cbfccfd50208494521

SHA256
78eec2abc267ae01bccd5a1e226880b3ddaade15cd3087e9d30e6532c3bb4366

SHA512
2b3329e5e591b44a13ab95e94e08cf4d009af2bbd1a2f9b95894db5e3c03df4d21202008aea489edde73c8fa89a78a990387108ce2c3cae70491a950e3f7ca10

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_cell_widths.py

Filesize
9KB

MD5
abe97d4909bc747df4d12ef3beed9062

SHA1
320031d770fca209a850b46571e75a6770e271d0

SHA256
7db99ec9eb447478f313f571da5d6e2bbb673ce84cb365f59497cedefb0a0e90

SHA512
6c90270471e1b2ac6023fd21acbc6799619f1c2ca5e89b3ac9553b7945eb673fdafa3931116f818f00a4206592b1daa65cc47011bbe18a8e74125e127cc9fb40

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_emoji_codes.py

Filesize
136KB

MD5
ee5b0bcdbc8329e0635631715fba318b

SHA1
668eaff13635a6a4368e1445d2e1dce7fdca6b7b

SHA256
86ed552fd9db55da6926b5688a356c85195c4517bfbf7763bb7326776b0a65d6

SHA512
9eee2835032c5a24d6def92233cf251731a339740350da9ef540e6e3fe31d4dfce953106a99f8740437f56f6a51ee8e5cdd3c66b47605b43a4594d573a6061a4

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_emoji_replace.py

Filesize
1KB

MD5
aa906731d3f9ee1af861a15115e9c904

SHA1
24b63b5fc802a433906688c21ce9106dad90c1d3

SHA256
9fe91c7adb04531d99526850adf78c35cfad79e1a1a6e490e45f153c1b32bc3a

SHA512
6c350502018df45700e38c50dc752c9df01a1f6bef42a4a704237dbe43103e3d12478322a912bd27ce5bf44982c7d1b5d82d24996573fd2bbde8026c0e5c0532

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_export_format.py

Filesize
2KB

MD5
d85bc9e9a2089271af0b0a23d06c2304

SHA1
a2785fa046dd008fbdeb43efa9271ef55acab28f

SHA256
448d3ca52ae6e6d052ccf32f9db4ea6c3f5621a95a3a837977833545398bab56

SHA512
1e71ba945d0cb93863e524f0db3412ce8b1ed770082165c6eb8a341c99e8aec5c147d831c4104085181a0e038f7d33e4baf88a896ad3b71de5692acc637bc493

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_extension.py

Filesize
265B

MD5
7977cd9427a2c149488cc83c16e404fb

SHA1
5b52136df195dda4a08659e1a0376c38d87c2c80

SHA256
5ede3b41a7022b062bbb38c38be80e06aef6e0945e0e3f429bdc548b97ebfb7e

SHA512
ff1813a3e9d97b17d971d6636817cc5d10a977418c724eb02faf46a8b1c370817cad1bfb58a88bdaaad1b853a2e2ea34338003414227f07ecf48f142c659d4dd

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_fileno.py

Filesize
799B

MD5
fa1ea276aabd62b2c707f7e1eab18e36

SHA1
5519860d4817d286db77fd7cce5c3876b6a9adfa

SHA256
1d66713f90b66a331b1ebcaf01066c79f9557d0a06cec28e1f3286b0b0fcca74

SHA512
e1b1b6026e33502c2e8bc747f91d1b1b50e2b7815b59179faa9128644673d1b194389368f9b7e57c48a9117be364b0bc6e791aa0d5a2867d9daf73e59935fed5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_inspect.py

Filesize
9KB

MD5
22804d522066d6c88db91362bccc09a3

SHA1
ec0fc03e050e03a729dfef35b2e00b93eb76d6e2

SHA256
a19246c37d5eeb87705d20a6ac39ef65bc156f564a8567d4f30237556a218c99

SHA512
de7fa3c3f313e3bc672fff1ec465032a5626789c1f89d4daee20db76146c727cb8cdbf76eaab1567c72cd3875ed2f1e920672c591f8c3f1d77125f426e2f23f1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_log_render.py

Filesize
3KB

MD5
fa18d80f91b412a7d0c7f6e291596c46

SHA1
e28c1f61c554f4dd34c210ea89f8b5031aff874d

SHA256
d41c88d0f035669c5963708624e2b9e218e5ab85fe073fdba088c8a8277c2a7b

SHA512
c242f78710bd6cc7ecbd25010233a48f31dae5519a7455694fcf601c3eeacd9b93b2010be02e26d0ba3cf784248e96bc593d8ce4f63571e79728ecf9d2dcd6d0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_loop.py

Filesize
1KB

MD5
cb02e73e65dd0d4e5fb7fa97608275e5

SHA1
64c1a76eb2413ded8096b98a419088ff40136da9

SHA256
855ffa08b7683e6d2f6b6d96a70e332aa334458b33dd36715e3d0fa12fbd7834

SHA512
21d240231aa143cd2b431d17f7f145d84019c8b4c2e85d091ba15be3c3044642de19f237ad5ffae487eb1929beb8a177c607dc812b0f79a8dceaabb2db9f78f8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_null_file.py

Filesize
1KB

MD5
7275da3bc596ef02029cb6a6f8c23f23

SHA1
6965bb340f1d411c719db72fccc48edbfebfd031

SHA256
b4649793fbfe21999b8f5180cc78adf00de460840c882a55b0215fb02fbf289e

SHA512
63e465c0a3eb1d3455d1f903d8059e189b023c153d1decd52a9da19ef2ee67100947f281f1474bcca3c924f1c57b72b77bab6e82f09f7a507a3713bda42d13e5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_palettes.py

Filesize
6KB

MD5
e16fbfbe318c86c37b7730154d2d2ce8

SHA1
ee198b57907e766da93c0096481f639f84b8fe04

SHA256
71d7afd4940a67426f960b95f62a478339d3767be52335050c16f422dd8fce32

SHA512
fc1a58cbde24a5c645e500e6660a20abe52774e9095ec15ef3ac783aa5505dc04f7e333bfee61ddc4d4f5b8a7166e9837b3d287a3864ba1181eb27776ec47c43

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_pick.py

Filesize
423B

MD5
285ad4f0fba46377d8de4ded53a60ec1

SHA1
72a297844fdb3fc6556944ce2e9799a93423b522

SHA256
7af0edf10378945e428b0ad421794e2429ed8ad0423ac23764b3c42005512c95

SHA512
466b2a92401866bb7d3fc4910e465f3fc51194e8bb20adf1c0a72990153e007893aa823b4ab1e63137b9f8bd1f2710e11c22aa16dba5830cd5f775981ab2e71d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_ratio.py

Filesize
5KB

MD5
404b9a48e291ecce2d4158803ed874b8

SHA1
ecc088bfe541b6e2cb45f1106043ed06e667fac6

SHA256
66de7c6a9b3323a84001c5cfa607562a9bb7737d5405679b39e47899bca9b6f5

SHA512
31c536b82e23b397e8eae5bbcba264489e74213593ec08b73a44e0ad8c93c8bd08de27ee1100eaf02f56d08fedb3c547f58c0ac3761f49a1d9407ad0c4e00205

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_spinners.py

Filesize
19KB

MD5
5dbf3829fc85ea67dea473d750f7a8ca

SHA1
7dc392ff666a492c8348338fbd08f412f81d6f34

SHA256
536af5fe0ff5cd28ec8e251d00449cda200c7378b8ae2fd2f0f60fea4439cf52

SHA512
6206a4f97fb1ac4743a0ffa5db22b30ca357f21b255470c92289e3abc442ce3f2676b79c030fb6e5bdfe6c35aeb980a7d9cbd16f6aa569ce37064293bf722a39

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_stack.py

Filesize
351B

MD5
dc38e75c7f9b0aace5f9cbe9fa826460

SHA1
3a77a4cd0cdaea78fad6d0088f35bc0035fb62f6

SHA256
f82f0e2bbaf19f7b0851d570c59041a5e1e12335f4788f9533731e9987da5e6d

SHA512
a2eabe50f90da82786344e3cb8803128f0a62a1672a97d7a3e32e53efa2a25305feeef6950ce4485d3a4d599789056077345e60000458096c0fe632a13385249

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_timer.py

Filesize
417B

MD5
ae43057547af31fdad66b2df35d85a23

SHA1
b93f8ddd7bc4ea918a9b40a1a5b993d7b7e93b19

SHA256
cde9716d3ea83c566736bc163e973592d51e013f957387ee15c4592d018bb4c2

SHA512
39df3d08c148e46c612e1ac5ff0887bd456cc0f618c555d25e1c2308e6f5f819a23bbcb9ff2fbe7e463f4e6c95b081a5fbb5ffe5dd5cf497299570379b601148

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_win32_console.py

Filesize
22KB

MD5
5c80e3525391e8b4c7844a23f0519595

SHA1
836ce92945cd9083af38a54fb64fd9408058679e

SHA256
3f4bf12367dc9ddca6d545354b7ed703343342793263b62a00a9b19b6e3f82e8

SHA512
3edb48442291075133f4f5c751e44ebde620becb8196bafc8dc5cda94774cd4e249c7cb5d7919ec4220775e6e0738eea9ca43e52dd3592b882137c628213a04d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_windows.py

Filesize
1KB

MD5
524db6c0df2d9313e7a2cea3586ef2de

SHA1
e312d9bfd14f611b77ee6fc267295bcf49568ac2

SHA256
681c1a0ff4b9e926e0a2922f6b2566a64d18dbcbb06360b905a6f5c25dc1a7e2

SHA512
2417df0d474fae40f1bbdb38bec30b9866aaa9fdfe2ca3bd1d6da6ab6c3dcafaa28e6dbb19778258d43a9f9f4a3c6631b96d36a975504270616a959b0df7f8c0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_windows_renderer.py

Filesize
2KB

MD5
0f359f6a95e64cad8beba9876575e6de

SHA1
f736af40e625c4da8c394ddabcc2b9a30d6b009e

SHA256
b7be192f7c6e0c23f79e64e9f691f52f92e223671a909b9045095e1c225eae59

SHA512
5351e6ea738dc0fb5c8506d811867f0468d09a6c5ddebd207c2004ad9e72ea6375c0013df6ab5bfbeadf605bf99443379223784384e0f5559af05a7b97b06bd1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\_wrap.py

Filesize
3KB

MD5
440510bfdf54e59b40ae3d34537ea429

SHA1
3d22539ae35a545a372103d2e37185a368559dbe

SHA256
1654aca26e445f42d5900dca5b2df8c879c27cbb6a5fe6487a95ca87eef4ae97

SHA512
6c3150aa386b80ed6b315a117565364a490a37edd26ee2b826c4749bea7e1a07b74b1891b91dbf873a38d4c223a62fdac2b07a94401791f9b299b49de42df889

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\abc.py

Filesize
890B

MD5
39d8c0acdcece37e58b4e2a2796b67fc

SHA1
9e5742f6c5e276b656a575bd91debe5b6935ebe1

SHA256
38df84f99a924a1799f3c56b297d8cdcf5e915b18451464f31afc07f497ee1fd

SHA512
d6d459438e70a273c142d2395121664333ea6ec008218d2281dfe465e1fea8fc50026fc80d661d9219c49baefb9eddce4d47b8eef6b6b177791cbcdef8bdcb6d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\align.py

Filesize
10KB

MD5
5bfb9391b41f4b8978fae9756637c505

SHA1
9b37e1fca0b6eb9b9020cd2030b771f451906dd4

SHA256
b025248ac5e441fa2af8840fc8110b7c9f25ecb8a16495f71db1fc2bb0a27be3

SHA512
e430b4cdabe070601fc7f7dd373cf53054f53d324186ec4a8190d28e4886eb076ece29225d4a1b3902a38803f835decfc396d120b2f4151415eea64aee3d0bda

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\ansi.py

Filesize
6KB

MD5
90cf20a4aecf64d490f1a7337a870984

SHA1
e3b9fa9c938e63733a92217086465ae90e9f3d07

SHA256
883eb9df6418aa7066ea1003ba52a3ad5f25f24149fbd7c4568a072471f784c8

SHA512
6951b44f6de19ad7d0a37436dd063fea06eceb834facaba734f6e07766fbe309aa3245cc530dc9f08af0c2c2770a4e2750b0f8a06811ce193c745beb6424832c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\bar.py

Filesize
3KB

MD5
b1b3cdc02b931efdc0eb071e59f2ad4f

SHA1
a55869f0a6fc15e21bca34654cd2a4cf41ad0d3d

SHA256
95d6d51cecca24e9df95536ebf5c52ee0e9d2d7d84df03275e474f6e9cc94dcb

SHA512
0ec568f4fdf4896e62128c1b790de286836c1c0eea62cf0ab0625678ec463fa46d76279a2fe297f7536d80b37ff8e0796f993a67b22348cc9c8e3f47d1505462

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\box.py

Filesize
10KB

MD5
e36ca152d6d97d01228420fad0f7d934

SHA1
b5786aadcb6ad27589c4ef5cf5833ea8b95a4601

SHA256
9ebe5f608520841fe250212aeb2d19dcb9424fc8053c3af337dbb6927eed265e

SHA512
2accf379dad9e7c0de232c4642b321f7d81f2d7d734397f89c00d65753b034a40b712e962c4de2e2ac810f40742394df20bce1bd01fe6fa8b078670cae4802c5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\cells.py

Filesize
4KB

MD5
7b1229e56bf864a08c7ce81407a3a0bf

SHA1
a486aff88f0c11312f63e1b4aa50391406c8d483

SHA256
68c9862b80635e1804ebf245d59106996dceee62a413c83ce2f5278f812de13a

SHA512
12222ea23a7675076557f7c08f8ef6976d6d531442378b6930fa51153c09f630d104abe73975175d9656fedda92c54d34037762a0ae04d71527acfc16cebeb18

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\color.py

Filesize
17KB

MD5
a806b1c1277a80aeaa86573bc19308c7

SHA1
24b94aeb5f0fbd6afca99604829e0a6f4551f7fc

SHA256
6c24404d57517b9202949e8797ad9d7b63ca43f5388b6319e2e82350483b4daa

SHA512
e1042e118b612f7fe22d6de00b09f0d868db2773bd558c7f16e8751bee52f4dc00291404fa27f81c6f55fab858f8f271260f43a970d2c0cae0b6d30704e4962b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\color_triplet.py

Filesize
1KB

MD5
9f03fdecbcd28eb49a7572a2efc85d3a

SHA1
fa44f6511c7b136d8bf9f3d9c858741f38bc776f

SHA256
de585091d25bbd63e82c33be0276089805a626f579765818342559f7b39168de

SHA512
73dbbcda7143ed3ad3f9d11ce8819877bcb2fb6bf39a255c63600c80464dfdaf17bfd2c4c9e174acc9a09020c7f7c8f6df92b5ca26c53204337596a9f9a6b7c2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\columns.py

Filesize
6KB

MD5
d32c7ef426f5ef568db7f6fa3acaae07

SHA1
556f2bdd1c7382fa941827c8f2afcbab008c1fc6

SHA256
1d45f429c326f5db0a362d757d36e233f876883b65f3248269573195a944ceaf

SHA512
5a5a96307a252b2dc2d22c2f73bdf5e64565d1ab2b584dae826bc5b16061c7c2a0a1a6364fa730a009c1a387a03d8e16f304e26841f5e04ee2e7f69f14a0848a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\console.py

Filesize
96KB

MD5
33029f46e953afc8f78c119ad2e6e7c1

SHA1
1be972f58d9fd05204b1db42c37d88f4ad774ef9

SHA256
75e15922e6ead8cf40d8c0ac28502c1509560ef70e32c1ae500d3b42439a1c8c

SHA512
fbcfc58d7f0934693a7b58de327bad8b5c6b86bc2cb9cde3c790bd76e78d6dc0efe8eab141a0cb6b37ce2287e1ed9abe6476f86779c225725502553e74623af7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\constrain.py

Filesize
1KB

MD5
cef54cefaa299620f5784fd7767f42e5

SHA1
97d8b90ab5f8d1eefb5f75b72a5658391ca58223

SHA256
d5520fb82f0082d296adc9dc42b8c1758a80dc9556cacbba8d9a35aeb87b73b4

SHA512
b1ac9bda2de67130b41204fc1f4f760396451da498c56fa17b209d27ed33449441b1d741240956cfe9199d1368b3cb3663da73e5898ac4d80d8aa000d74f836f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\containers.py

Filesize
5KB

MD5
eb43fe0936b0da7e7652db5000d7255d

SHA1
e78906a601db4e8284aae0033e5bb27568083e61

SHA256
73fe7a4f171e74662a0dea4704c4ee65d5088a38ad010827a31f9075ed19d6aa

SHA512
8e103d59a67daa4ad5db2acdef91a0e367eb2e9def058fc289533d4bcf8887087eaa4adf52d8251448691bbbd1cda53d0a7ef7ca1349d1ae24ebebdf5f3746dd

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\control.py

Filesize
6KB

MD5
7433e137d8016bb1a4b74b4ff44c8786

SHA1
59d7c1fb1c7d75955fa319c2d27f341802b8e2f5

SHA256
0d29074d440ba2b7d211100a13fa1300450579f667669e1b41be2af2b1db2b0b

SHA512
b4f63a2e4a37437dee7091b2c5b542b8a92979011de1c8583da6be3bc795e4dea2f870c2a6c8a154ae28fe4d2778f83c73b7b4f22b618458cb7b64e3bcbe313a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\default_styles.py

Filesize
7KB

MD5
7042e55f250227240da1a382f025e72f

SHA1
18539b29fedc05794fa133903a56d0f4fe84331b

SHA256
f857b7d7c90c548fc8c1c88ae4f3a94e170ed3ef43609ebb4d900de839669663

SHA512
e4ad5c780172aa05dabb379e4994e3fcc6b8e511445418e9a97940760f32e7e2183ee7a0ae2b4bda9f09e8052440622315a81de6e7ea42431cbf4f7eb5e221dc

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\diagnose.py

Filesize
972B

MD5
406e905b4d37ac878eb81decb7f4492e

SHA1
a8d91b9a64a8c1ff92990cd44035812da8217c92

SHA256
6a7eaea2ec2128f025bd0858a4d3691aaf44272b1f3083afbc26cede84a8476e

SHA512
4f1ee27081d6440b0f87c3a7bdabdc569d7a60b0ac888310e66bbca4e92e7cd53625bac7f91005b061ecf301c9834a9e859b3bcbbe0ca8850c6c411d8bada604

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\emoji.py

Filesize
2KB

MD5
e82e259fa587cb47774281dbaa8ff256

SHA1
23a65b3dc99d265648ecc0517aa97c8fe767020e

SHA256
a264c5f5ab1a027b0ce322d8f78791ffd7604514a6d651d4b335f6d03d726024

SHA512
379df43d4205e5bbca593d42a1f8d0bf64bb42bc333135d2f37dec0419adb21eb5e525c173ebca55345a66a4f71dd20fbc3dfa995d7bc192d5852888ade65223

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\errors.py

Filesize
642B

MD5
b7ed359477b4d6beb67ce0e6151da181

SHA1
cfd7926adb4a02cb6df8794999212c6f026af1f1

SHA256
e693f729ce5de1027f734285b31adfca18e23d57bb275ccea9215b140cdc57e6

SHA512
25d444db76150d745c7c2999a50c0deca140e000072440729b177808959bf8f3cac42c475a12f81a379300c8c3e3b9e76317319d12c0a79d8af9d50748a4574a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\file_proxy.py

Filesize
1KB

MD5
eedd79e924fc4c14dd6f3df7d8f460e3

SHA1
5f7dee3ccc5b50b923adaec01508dfb25984acd6

SHA256
4e5f531cc0d9f8f9395a6f2c23580683f5390e1bac9b10fe159d1f51b714d16d

SHA512
320142274e3c162da113797d2bd5e9b260b04a04f1cd5b5dc081955568740c7851da0b1c9dc036269026d84ecf07181afb7cdac2960ca99b705bff343e545292

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\filesize.py

Filesize
2KB

MD5
afa45bb4bf3f0cfb52834633577d8c76

SHA1
e9b82ac44bd515e9bae642ff0361163d5f9db497

SHA256
f5f4cb00f080c079815dd46feca654d7de234a036b45be96c7b448a0182a78a6

SHA512
6ba700d004503308230880ffa7679983a057af93b52c744f0232c5165117da9310b12bd242df3fe41e227c4d9ef5310fcbbf82e9522d1284a7ce1efd576a08ba

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\highlighter.py

Filesize
9KB

MD5
72ff8fc08049e7aaa15a5a0bb607b547

SHA1
0a0ffe2e9fda6ac194b19e8706a04c2f6d2c0fc2

SHA256
e9902351c3610516a3042a3dba6154725ca2db12f4fb9e492fb4b4bd819426ee

SHA512
6fbded8290817ec722ac54291090b3fe0081de88b00515fa021711962b14cb691bdfe19d8c4b380f1f44ceb28bb7b0e05b702152b0d89b227308a67fd1926c16

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\json.py

Filesize
4KB

MD5
8632322a9fd81cd31af5db210871b077

SHA1
bdfcfcf4649743e765ba3254279f009c29f57ee4

SHA256
bd512829d6b0a094630056b23f05e43013cbcbb4524ecf9fe38c124034769c9d

SHA512
d39e3d8a6f8f825ea5dbc82ab48d3608b5704683e2f0946e01175d17063b9a7eb27283761434e96845046bbd63d54d80b738f529af740322f29851af597f2430

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\jupyter.py

Filesize
3KB

MD5
cce8f456c0e1f372c594b6091695ea72

SHA1
4ccdab1925739170a634b5e3507c6249a3ffc649

SHA256
432a0aa04ffc21d09baed8921e9f53b1348dc931d8d053b9c2113b8ce4ddf541

SHA512
6b48a5fd44791635160839f9acbbe366282351bfc3670f17aa93c030a97fdbc2af10f9dd1791e894c78e1ee9bafe32782831d2c0064f917cd84c40d299a0484d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\layout.py

Filesize
13KB

MD5
64b9861410485b3d5f1c6514a67f2258

SHA1
9b64aec344926091411c2ec17fa526f66df7be94

SHA256
6a3912140b4456ff44153705b3ec38b997dfb7b9c45e13732fb655760ad3e6b2

SHA512
375551cbc425464470071b5e3c9970980292030af0d95bc405972f4740f24d888b2cdfad2d3960e49e855c38f77bbd82c6eadc0ae0e5affa9c51ccd5d7d59240

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\live.py

Filesize
13KB

MD5
16338b86c9c775d4972835f936ad7775

SHA1
6ad0b7d018bd96ad357ab3edfa98f714de25343b

SHA256
bd4727255d8b3122b7b1035a20b6e6d3efc1f01a407a21df71030030b7e945ed

SHA512
5a7304acc71ffb37b5698a3697f41fce614691ce68734fb8742fd8b5f40260a04f9ae21159b9306578c3032fbf419ea66db5f1697cf5d72c8c1010ba74b0467e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\live_render.py

Filesize
3KB

MD5
fc0322512f6c2927c1cdb45ef300df66

SHA1
89bf548e4fa15ccdc00b24699b99c8c8509c8593

SHA256
cc9b41e3bd631b3881b44c31739e31d76c0442d1f806e42bd5203cbfd914f36c

SHA512
c3eb6dc653268f3e4f6b611f9233677e90a91cb8cd969135249447e283de4d5d2a860bf72498c1297af524aba2ded11fe3ecd0a9d1728b3c1bd1721d8b585e66

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\logging.py

Filesize
11KB

MD5
0c56aec264322b58b736d8da809db3a1

SHA1
644fda0f18147d728d36010ba5e309ac957a1cf3

SHA256
b81f9c07edd0e1b9970cb2e96ce5a4985be2c3e15d7b7f73c8c57ab4a2765874

SHA512
3b94f12d7827e069efb232df5f546016702cbefd9a3c20c14d6dcdfb974f675145ed7ec8eabb8cdce5b8b9511dd70008dcf1c17eb7178ee11c472fd9d9f198b1

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\markup.py

Filesize
8KB

MD5
6aa35ed72eb2cd5ada92708f21f064af

SHA1
203e0225a128f5df37647adc517fef2489ae087e

SHA256
ddeb8628fe6ce353424306928d39c9c6eb398993078f1a483345ba7c2c6b6b7f

SHA512
0aa62a76de06e81c2eb12e5fd79a49860c97e40cc8d7e2a0535d4443b604c40b4b88b5dfdf3a560d8a9d8562428b0c17023687c78d5bcdc029eed1b785ff7420

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\measure.py

Filesize
5KB

MD5
9a85d7d329b3550929e01d7b08f6ab05

SHA1
cecfbef0e10cb7f974bd8f494e639ebd1c6990a6

SHA256
1e6ac8257f2c5914c76e087c33111acbff37564a8d5bfef4b3c68a3f965c608f

SHA512
bc39e234c2d348f1bfe5c2761594b89125fc75730462b83f32fb4339bdc0d8bd1213edef63f889e3191fd3b76e5bc80b42acc4d37df5cd12aa1171d155a158a7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\padding.py

Filesize
4KB

MD5
a5009662298b328308bd59f23f058ae3

SHA1
40e397786a4df256246c2e9e16c135b2a5cf8dd6

SHA256
913146b1d19ed28b3bb572e71caa704c8f7409712fadc79e6460ac866272e73c

SHA512
7311e9407fe1d3113f28662b3ecf2d76a0671571eb5e0a437413bc21816be0a8934d36c7f81bd960eccc195673c9c57360ead7c04cc0306b38aa47f32e8aab46

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\pager.py

Filesize
828B

MD5
d2f3f5a559bcf79942ce62b742fb2ce2

SHA1
66a01aaa2f82c4f00e8dde3c2a7eb04e876613e7

SHA256
48efc44c114a6e0de7fc080ecd79b8d52bf7e98c57032237fd1f8a398dbfb927

SHA512
1a4b396a485930f04ce5a9b3e172ebdf7b826bb9f82818b3f90e24a1a25435921c93d66322f0f00ba57642268639234e8ec0dc195eb37c2dd1b15211761310ac

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\palette.py

Filesize
3KB

MD5
d604e236b7a1900632c72e91bbb70442

SHA1
30f805997188595a92c7e3a32effdadf5d7f7e6a

SHA256
9489ef4753830d3d9fdd464c7cbd60aeaedd63fa4374a1f0e1b75480e19a3386

SHA512
66a0f0f427edbc89630fcca0c3c38465ed0537d2c0f12a5435573e6b0823e5bb849f68a976e286eed2fc0337c2cb7e743dfea529bd4dd0b36db8c9611098e6a8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\panel.py

Filesize
10KB

MD5
2fdc1e70be47d6cafd871c95721ffc21

SHA1
ffba38a9631fba6c57ae19d9c5cb57016cad26e4

SHA256
d8577557b7b5907c653c522eb281d8e53efe0acd11a64ae2860546f5956a2788

SHA512
74fa86b8f83151291b59ffe5e003fd1d3585a5b899680caed5d06cf0c5f7b3f95ead30e75ec78b12f83347ddf2496fdd9036636ec6dbb86eeb3a8e6d685d9a3a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\pretty.py

Filesize
35KB

MD5
7d1b626ddacb76e0de2b8b67693d2b26

SHA1
3d1a06561e42be94359ffd7db43a1878624ca466

SHA256
e682073ff0865a71c49c3d3331d5b9a9f182e641ea20a9fbcc7fde0b872b50b1

SHA512
3ea9409feb053145a55a1400593567e2e18ba38669612cc768c87a6eaf6df853e768009204a0f89f6f1482011be0d9d407a2fb13093238a071e5f2a09509d1ea

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\progress.py

Filesize
58KB

MD5
57e328a504c5d120a7a55b836012a831

SHA1
0bf39863f0cd7a8970369b90ac79fb32464a7cbf

SHA256
3f4db18bb4f651adeaab5ee8f376e4b217b8734bffe39720f15c938fa512e958

SHA512
443ebe9b93ea68dd547dcde99bef03185ae0abe415ccd37d51aa0e8f4c1273c3737bbd1c9b63a945cb280fdf291900ee8937f748cf7f9cfeae9791e408077a03

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\progress_bar.py

Filesize
7KB

MD5
45a16973e21c93a861b60841b6bbff4b

SHA1
39a238e6a33cf6f94c37ebcb7b567a170c79c4a2

SHA256
2f88f0f04e906ffc7e8e13ab2d5864b8c68f9a202114897c8c741b585acab91f

SHA512
ab72c4ea7853c21093e8f51af6146c2eff1d61cf5fd74fc7f99a05e679c21eb3868f0df3317ec3d68ff0a3100d76851f25abd6fd60301d8572e8e525aef9d44b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\prompt.py

Filesize
11KB

MD5
fa6b0b8a45dd10250d04ed9ea451c0f5

SHA1
e5e1bb507b49d01ce2051c0e694c996d3956ce10

SHA256
c1d3a7d97f174c92a72e7970e8fa0c63bc46e2250fa777b3b783b982abe957e1

SHA512
c3a386c293a6f56d089d986e6a663f66309e8f7a2673823f7e309262f6d0c19f7688ea17dd3923aae04b0296c71390c9fd92dba5a74307b2113f9e72d77d495c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\protocol.py

Filesize
1KB

MD5
eccf6e3694a59dbf6f3e5adfba43f6fc

SHA1
a2dca9d46365f198635de5bbfd6c2628566ab28f

SHA256
e611c70c3347724764f22587e7311b8becee215485e616d4da3228e3b47b9531

SHA512
9ff97476a1d87ae9f79172224791f4d2e6b62c222bd494eb281a544caeadc7a3e86fd2506800e6d5596f2004f6fae50698956252bc6e2e791609ea5708cbb824

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\region.py

Filesize
166B

MD5
2b7a3fc13dcde9deca6d3a7217b45de8

SHA1
f38fc0db54d1fa3e66820604153208c316dc4df3

SHA256
acd4fdc59ad56536085d90b43589f8d42250c1835b47e29e70f3b14e042f07c6

SHA512
591865d005b3052f86ca7c7daffecdabb0a68e0f9b2665fa1be7780651e9d89af6f5a75801e47f561478e8aeadf814172ce317abf5051932b580889115b1b66b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\repr.py

Filesize
4KB

MD5
50b1d76fbd5064c7c1ddf2783bb0aab3

SHA1
bce66f8d6512bb144555fa7b6ceec329b469defb

SHA256
e4c64966638d802ea4b9df905befe6d68917c0bd9a47abbacbea54714089cf6f

SHA512
18209a7a3e4ce2f4e4ca24a4a264d13633cba837a76bf7045c9c063ef55d9628ff32546c47b108ddd5424cbe502ce908b787a970e8af6ff770332d0f2ee69c3a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\rule.py

Filesize
4KB

MD5
790460de91d5a5783f3967bee938fe9c

SHA1
7749aef099cb40f7099a009edf075ee3936d4757

SHA256
d1f35a4bf68445add43117374f958ca4dfecba6b43c5f6a8af6cb7a1fd5fb419

SHA512
05782e9d49c1f2c9a247f1416f1eb65b0fda116ddf12d871c65dbee282e9746c113a2f42bb83996be29ca38b102fc20238082fda7e0c5f65f7226844759c96c8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\scope.py

Filesize
2KB

MD5
e079470d462d4cf31e883874c56ffd10

SHA1
5aec0581ed1c64d49146d94301c0e01d2ecc5000

SHA256
4cc514f2aa35eed872a9008faa30cb62983f514d64e6a55df96c2226f9c955ab

SHA512
90b59fe3f882baf6ffa1753698c629f40493a2215ddf3431bede92082932451ac38b429bb0855e8a7f276944df33eaabdddb72c39cada5ba5a5e5e96da1bb40a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\screen.py

Filesize
1KB

MD5
0c196d1d4b558fd036f7ffe1b58d065c

SHA1
4f0802d8391d8c1e0397768db38bb9e56cbac613

SHA256
628791784494871ef882ba9bd264926fd960861cac5a6147621b1b3154235cef

SHA512
28dc7a790717612d6f570bf0aeb21e79d313d98adf848aab6720b42f7438453b38496836abceee501f6df7bf285b345e760995d38abf0f9749368d953fda11ea

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\segment.py

Filesize
23KB

MD5
ec22fc4895443d62cdd570ae73f5efeb

SHA1
8c65c5d5a30f96a1c1e041af3ddea717de52deaf

SHA256
854d6e79e5ea23a61e15ad3c2bd0c08e517640bc5c258f69c19c7b46c5dabe59

SHA512
6a40a3da63631e37dd9b1f55b095dae5259a360b895b7a7faf2b936df165f01b5878465be9a70cf17e932a0d3cd7893177b969eb6655cdeeadd4d2a41409bef2

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\spinner.py

Filesize
4KB

MD5
1709acb3b169aecc3ceaf394b0cb5bad

SHA1
5a96e06e5cae604bf13a3e259ce1538eff9e4644

SHA256
d799280a61740d0783f3e936f0ba6de97ff3250525cc4860a3fe80eaecb8ee57

SHA512
0933c7d88ba7406da8e116c11540ce95bc2634b70936c4b21fa75cd74043605d41a4f50f9efbf887a0e14bdcb051c4ddd5b7a9f367974d900573195d9707f013

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\status.py

Filesize
4KB

MD5
d89f3ca447cfa4ee5ad60921701f0b74

SHA1
50b0610610fe2fa9df8cc1448ddc09bc51d1ba5e

SHA256
9243e987761e019068f97fb8c0fa7c813a99c94e3ae8d2f06410383d94d37b0a

SHA512
2147907d32cfac1398435ebab63f02165d21f9564e730831e381545e2b69de19851b9139db52cc4f751578b202ad144bd6518e6dbd013aa9156834f33bd854d5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\style.py

Filesize
26KB

MD5
7c60a5c7c22bcd1baf6171217cd71618

SHA1
157af0d0548f2f4c1fde0bba511c13de2aeb7d61

SHA256
de18a8707ff837cbf0466dfef32156ccceed4b08e312f7a7ebd5ea59ab124303

SHA512
7b7beff1fe10bfe4679eb274a2aff2100d8ebfe8ca613a8500c16e519396068def1858d58899e31a70ed468948e95de07246124f6abf60d86fccc772f34b4a5e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\styled.py

Filesize
1KB

MD5
9525ec563099344e538095dfdb156a62

SHA1
6fd170ba37f8246b0f64ba21357410459044160c

SHA256
799367cc6ac8e248bfe78a606373a3d13fb1de5c5d5d3621e3faf20c1db8c015

SHA512
d5dc8bb7b27d2c39f06aa07659ae3a04e661cf4e4a8ddfef015506427b5df456fd9d46b2848e6594762b85332a46362b48ebacb39ab39f9795b4c22cc1831d07

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\syntax.py

Filesize
34KB

MD5
412e08361a0b4d05de226df7ead11d4c

SHA1
e5837f6db3e17d39a46fa8dc60bb1e65e5678e44

SHA256
4e7643b8e0f80de1c56e46951008e2d607fcaa0025314f41a1efc692c3060a49

SHA512
27ffaebcf8b1332483742ef5c2756803dc1c5f9c38e2482678d5351f13fe7fdca7eb8fa51e86fce22458ce195d4f31b1a5c720c0bc82b8e1b954bdd03ed9eacc

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\table.py

Filesize
38KB

MD5
0605b5e89a6b17fe4fca34a5f8392c75

SHA1
80aba27687c1d62c40fe68eea6b315c9e139da5a

SHA256
9c612f0191c5e1dcb5bd3f61f468fd3b9aa14903b738303126fd11635be7201f

SHA512
687c2ea9133f46f046bfe557615d2c9f3ea9c9c859f1e96c6defa892bb8e52ade158483e948f836cd3d84d50d8147a96fda764ed618af608cc5e97b0d547a169

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\terminal_theme.py

Filesize
3KB

MD5
26697a919bf9b0eed369a89647145303

SHA1
006b559781a41f7f79c70ac0bdedad9f603c4d13

SHA256
d63e7eb9f25f9ef940a3942c8bf0026625c39b0317cea826141c8e6d3f7ec896

SHA512
827c24a259b44978564070ebdde1c9bb770506b3bf7b7dca692732f831f7a3eae5117aa286a357711f0b5ff096bba96e1f249e6d4f7fc0e20add35654472b034

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\text.py

Filesize
46KB

MD5
771a9da74232da95603a26578ec2969e

SHA1
db8fbb0f8a7674c670b36ec2e18df03a0d961b83

SHA256
e6b437cef36b83951928d2de71b87b7e2c3dbf71de16e94d56d458fc20438e31

SHA512
0f4b49829834deb03c40f89ae88f692e906b65d045734bc795a7354a8f6e65b9576fd15908e14a92c6d2b9ceb8d21a38093a615d71cacb3937f7e9c79670c0df

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\theme.py

Filesize
3KB

MD5
2c48cef31f4b18114973f1458e2df5d7

SHA1
32897f1406e9e0e9d8d31054cc44b8712a3c606d

SHA256
6de9452688330345b41f2b1069b29a1ce7374561f6928ddf400261a0df8015da

SHA512
85c6ed32bad99f6062958e01159294a53ab29f4291f2a656e03da6284fb48ada543b1c82e7a08cb3f468cad0310afe7a84a46cbaad73b813531334f8cfce88de

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\themes.py

Filesize
102B

MD5
579b6ab8dacc395e63fff4800b1c6d3c

SHA1
5962944738f3a08c35e5119f576c85edff8c58c0

SHA256
d318132e8cdf69b79b62d709b43742e50917e4855411abe2a83509261e185459

SHA512
464487fbaf8c4c79dde3280b5f4c5c80d7a7db389feb8eb9870241be1b6c4971d03009349539571d3acd93cb15572a2618ad388022e7809a70f3cc8c4e4a3c50

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\traceback.py

Filesize
28KB

MD5
59bb12b14b45a90be41454416717e1a5

SHA1
53796fcd4fd587ecbef95dad21a25b4356a06c11

SHA256
094a7160b8d05886fabd043a3bbd97d21bc357a71aaf21aa53a53078780ec826

SHA512
e6943bad1211f2da99b795509f81c9b0803661ffa89b326bbe372a2cc59f5ba990ff069ca09e6ffc02f3dd68420a1581d41cec3b060a59c48e45a732a667f30c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\rich\tree.py

Filesize
8KB

MD5
f37a87e603b075a080223a7ea6f4f572

SHA1
81ad24298c1db873de5614e0c6954832725aaa90

SHA256
99e00e514eac627a0110e5f620bacf2d8f64e5b5ab58d40a91a88416f1e29d73

SHA512
232f48f150a9cc1a3ce1e29dedf074d13edeb05a77cbd7fc4c5b1a7dcd07b02162a804d7842a3f3b774cfeff334784c0d59f7ff9d9250c689e1d8da488d5c08f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\tomli\__init__.py

Filesize
396B

MD5
eb1b063b57daf5569fbf24247a217fb9

SHA1
74c49fb12ed49ef70739f0f9ababcd0cd7346fb9

SHA256
26153057ae830758381efb7551009531d7c2bbe220015f055e6bc353da27c5de

SHA512
0900e635f035f91125bfe1cfe09240965122188669eca7cf2405d012a4612570ea6785d9036ab8bd787e5b31e7d392b01677bea20de320a43918e77fb9657341

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\tomli\_parser.py

Filesize
22KB

MD5
f67cd21bfa4c3aff92f17e6d06373ccc

SHA1
c21682d8065b4c6319654107c4d1691000551a96

SHA256
83df8435a00b4be07c768918a42bb35056a55a5a20ed3f922183232d9496aed3

SHA512
37efe1a5e34aa9f8a7d09588dc9c5ba1f86af035dca297a375f0d0485f9ed14dcfecf0ef47b3b6817639a813b0e37ba78b140728342ff66d2bb7e899a3f52a9e

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\tomli\_re.py

Filesize
2KB

MD5
0111df35a25a503e0247f50838d35aea

SHA1
41d8d0205ae11da5308581e62df6da123be415ed

SHA256
75b8e0e428594f6dca6bdcfd0c73977ddb52a4fc147dd80c5e78fc34ea25cbec

SHA512
cd58581a287c723f687cdb08646ef7453ccab59e73145f1367119d6beb61dfdcc6f97c6186112d849e37fd31eb6750ec20bef3795e57729a0306e537d9216907

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\tomli\_types.py

Filesize
254B

MD5
19a32b713392e66bac544e73f025b2cb

SHA1
6dc6337d888edea5138a094e517be6c0e4bd09f4

SHA256
f864c6d9552a929c7032ace654ee05ef26ca75d21b027b801d77e65907138b74

SHA512
c3d610738dc0e26f5645c200c6d1bd121642c5c2e71a2a235a702c2f5902e5cbe641016b6b79b1947e327b92216dedb40947d4247bb8913b138be0a440c0c28a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\truststore\__init__.py

Filesize
403B

MD5
adb716e6b507be36837f362f8f173b64

SHA1
beb7d29840b46ba1935c2a9998788211d2bc473c

SHA256
33e3e1b8b30817b83129793bb69a36303edd93a9ea1b569ef065d674d5db31d4

SHA512
48998853f3717e713238e3581c8c4f50c64dffec4e839583e3723d9608fab36106fc933e6afd3a9436a2b90902a0c1e6cc7f7c75c74df1f81ab4b701dbfaec9b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\truststore\_api.py

Filesize
10KB

MD5
21f5ad99c2fe3fbf61033046a0ad272c

SHA1
097fbac1de686073c0b9d93e7181d5c50c6528c7

SHA256
07d2481e2a730484bca4c3ff279d3ea350c7559b2f2994145d30741d043f50f8

SHA512
334566080166d77c431ff968f3e1d324f7667a66345797c04e33622c5e7dfd454fbd04d3ce9e3318d2e96be1ea161e4768e62b7d1ff483e182669ce0b84af38c

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\truststore\_macos.py

Filesize
17KB

MD5
57d1328ab2ebb1fffa344b15eb76eb7c

SHA1
adde4ad8286badd7c67c79e5b3f673fb903a1aa6

SHA256
549db86afcf968419802cfe45af9c68cc26db883f8c497186b8e7d5103900b73

SHA512
4d242bc8cdaf6d551016567b7c3fc97feee99d3f6d7566bef2ebbd0158a78b28c9e2c21b4c4a71d54ead329e75ac6d4c6726a23ae063875916398610b4feb8c9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\truststore\_openssl.py

Filesize
2KB

MD5
303ad55f035b88677390f0ec61192477

SHA1
180fc796b1f30f0c2b9f7c7da870a67485cf7479

SHA256
2cb519ed919a8a8fa2e5da4a2a328249e4ae7e69fa4fca62f650dc167bd2caad

SHA512
7ac126f2e30345018342d2257b3319c798c50b2387b7cd3c3b86b9d91b896bd1e35d1b5a4cac918e7e6a86c5e55cc3763a100644c51b6e9b454b118a4e4da85a

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\truststore\_ssl_constants.py

Filesize
1KB

MD5
6b6afd01f3f9a225fe7a4366b3e04570

SHA1
339dae582f9b73f50eed269b6e7a3c4ab4125a0f

SHA256
3540f87d529d483d36ae2efe75bd2d9ced15a8b3fd687bb3992b5c5bbb40974f

SHA512
5b76b0996684b0032e66489c8a4b66f44b5266feb1520858fd547569a3f83e2efabe4a5d91523df0552fa49c4664e702b43d8ce6759b9b2f547fae4c1fd7af19

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\truststore\_windows.py

Filesize
17KB

MD5
de0ee3869aba5ce5a1245cb7cb36be34

SHA1
e8b99dfc6e2a5fd7d4cfa7fc59a9cd29763a1b31

SHA256
7a574d5621cd1de639af77e2068cff245183dfb6ad5c1f52e72691a0f2841800

SHA512
34961012dd69a1423005cf991b8f8f225a7cd05b8e02db807384238a5baef0b735b77a6a74d0389ebb5f59be8bb56a887a44623bef885d6e4fafe4546a20cfb7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\typing_extensions.py

Filesize
131KB

MD5
8cd2cf4f28cff2e22121b8a4e6621d23

SHA1
e7f5dd2cdeb4ca95c82ea32acf03206644f7c488

SHA256
efc8459741e90d8fb29475150a759d5399d31f150fdbe4bedf011993a09098b9

SHA512
9810169035ab30b5198caa68e2ec8c4d7282b910a89548dd3b4bd648cd2278c915483f07e82a2eddc3e0dcd75a5cbc135f32c0dc5e1ed02360db2bab5d87d69b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\__init__.py

Filesize
3KB

MD5
aa0aaf78010eca6e197e854ce5250968

SHA1
cc9234ec06bdd97bbbae4ae7a2b5e837f93fe8de

SHA256
8972dc6222724a7d0635b58e3990c30298012f52603f8e0467c8b5efad12f0c7

SHA512
9fbe4267643ac3e2408c7f355b7167a40d8d73a53b11a227917989ca72947bf1ffc015305044cc4d66ce6d028a05700257b1c5b03e50bbec4897c61294c82bc0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\_collections.py

Filesize
11KB

MD5
22c3eb7983299333432f17416c79c1eb

SHA1
ce4646fc0b1421177daaa796ca6aae74c1ae107a

SHA256
a72012249856ef074ea6a263f50240f05c8645fafc13cb94521a94be1174ef6f

SHA512
de8dd8aff616db9649b1db291a7e0117f138db023458b41b42cdc434e1cba36e052bc23430277541af355f5c50acbbb173643946fa815971aace43609d87bd1f

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\_version.py

Filesize
64B

MD5
f28772c136bde23c1d29eb5fcb130d87

SHA1
b6273a38894cb1bf39b15557d686711a5ae143e2

SHA256
72e26f9d2ad6c57198810dfe651a0f330f3ea9a379b69c3bd639c7d6dd7a74b0

SHA512
e71249e25e29ad1b56a1efd5c79ba61e8a268b4da366e003e91ec244d80749cc4d68c89e56e0c91c9c0b82a4c2dfb564ab3ff1c40fd0de62e186a90df049e42d

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\connection.py

Filesize
19KB

MD5
7f3d2e4e6dcbe8e8c705b907a65205f7

SHA1
a45b9ad3ef3a0b637f31dc0cdfcf5b4eebf44c37

SHA256
f7693db5dff2e0f1224c88cdb9f0946b5373301dc9df0d0b11dca89188179d6f

SHA512
dab3b6f8b3c949af136b4628cd76497f65ceaacea2f62d8f44ca911f558cc8a5392acab229a13688fc101230f1f0d66820fa51bd87f5a2507d2ed123da3554d7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\connectionpool.py

Filesize
39KB

MD5
eafc9ad99682f9d99e2973976cb133b2

SHA1
9b34187ec9b6726a4f236df99e0d063c98cb52b2

SHA256
05eeaaeb9491f656a88a483e87f8e673fa7c396b449b082afce9bf5ed8a0fb63

SHA512
b9ecc5baf86b4495fc30eeff15793270ea46ab1712d82c9ea94fcd61ed67e4b619ebfe9f9f36f5ae2707a1d281557f50ca6efe287b9e0ea34f68205890775381

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\_appengine_environ.py

Filesize
957B

MD5
acc1a179e0ec7e6c78ddf8ca298ab6c2

SHA1
c4cccec3d49682ba148aeeb6ebc8c9dc450c6a3c

SHA256
6c36f2384856d8228b25c42a00a032ac41cdf9a925b321c52aaeaf17c645b269

SHA512
a524c5cc746da680f51071ecf610aaef3aa4a58e169786c28b27d9961925461729357be180d2d95acc0e5b2c2456dd5d4dce9276cc856717b5f478c9290c4732

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\_securetransport\bindings.py

Filesize
17KB

MD5
6661de51e1663a18b4b84cd03f030d82

SHA1
5dc00f4748144a2c049d1f67c1ec16c18a66f9a6

SHA256
e1793ae2a2243c1b74f40e6af9120552e0e135cf665e29556a99bb5a7627cd1c

SHA512
558cb4bc7f8ff71985bc799b4a022c3deb07b570278af7de4ba7d5fb027e9c7ff28277fc68a9939b8b3413942dd6deec614aafa7554a9f19af99a85b1734d6b8

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\_securetransport\low_level.py

Filesize
13KB

MD5
c4cf8188919da124cdcf69982407b298

SHA1
3e0a4a85c263a1269f8fd9bf290e7ddfc1806ff0

SHA256
076241076fcd44fd36c4ae8309ad4f6bd22ec6b3f0c730f365b8b14246fb53d3

SHA512
04afb8ba5b06f9f92e139b5405a1e350a86a5a86d748e9d55599b1d977103b2819ad372c29bba879f9555a883c798b31b104ae07aff70bd9f929fd02bbe61933

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\appengine.py

Filesize
10KB

MD5
0039628936ccb81ccf64ca087b7506dd

SHA1
7ad51ea2742a5dcb5570a366ca554b60e6f2093e

SHA256
551ebc780544d77ee5c53823043c029dae5488165338a6b4d408fffb905a0b3e

SHA512
eb1d3626395d7d7995b07a1b378eba42106233267997af42e5a8e64a7a11f26542af4569ae39f4ba8a23dcb7077521db98060a8648a274284305287d358f0695

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\ntlmpool.py

Filesize
4KB

MD5
0d2564338ccabd0e3126c771ed288bb0

SHA1
40648662db6948a234e567d5f162afa5cd75cdb9

SHA256
3657e45bb58c756f338aab9da298c7a16dbdf688350535a2d0878889baae1709

SHA512
592c23d9350cdf0baa763c98067581fe4a6204a2e00e96d1560044a04065cbd97b040cf969b5620aa9b4c96e19b552b85d8d8f2cdfd0d647f0584b64e76ea0b6

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\pyopenssl.py

Filesize
16KB

MD5
395256c643fc9a1cc6277acda6fdca81

SHA1
f33c6754f3afeaadb1f1e3a8c1cb4a0d1c4911aa

SHA256
843261e0c87263fa7ea0a9457187106954110efe86326046b96f728f1c9e7a33

SHA512
631435d1861fa2f012cd3151ee48c03573ea300bc5105dbadc08a9432c808bbeaad38bca42330fb6ae275a69991b459e42c6d5a4da8979603ee73d7b0f906857

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\securetransport.py

Filesize
33KB

MD5
28c7513449b1d57d1d5cfbaa015b5ae3

SHA1
ce2ae9334746f7e8b4c020287fdfb7d6762595e7

SHA256
15e7f5208514147aa97afcd78833db20690329c858d8554a79578b191d50ab78

SHA512
5f465e48a281f750636dea5973ade24e70c590fcb5887c56057103af62cea8bde0993aaddf05aaf8d7896514f1bbe2990b0995e78a1cb756c9f0f8095f71d0c0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\contrib\socks.py

Filesize
6KB

MD5
1cc7d6aeba0181cc04ca63f73e21abf4

SHA1
3bde3fd1dc48479b42833c8f7c68b9f57b120b46

SHA256
6918bd7965e8f5911bf795d4c5e7f8676d421659e78db122028f473ac7a832de

SHA512
f8894faf584d45df073fc4096582f0a2cfddc3c92dbd0a9f900ea4f9ff07a7fac1f6c92836c25cfdaa887bab999fee9cf833baf7c9a52fa853f1bb2ca1d96eae

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\exceptions.py

Filesize
8KB

MD5
8e282c0b6583235297a2b8f5d22e36d8

SHA1
ae0a47792b96e8f918c9ca79e9834f99283d9cf4

SHA256
d0c9e7a372874cd7d745f63beb7f0db9f38f9146fa9973a6f8baa3fb8c76c3c0

SHA512
f033d4d1c3397807617700a66f49495bad64b85c0c060931d9fd94537c31f388af84e3193ffb1718ce9762d54140d2264e8dbc079e373916120fdce550a622b0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\fields.py

Filesize
8KB

MD5
93a2dc0508cf5901177f051f86d71c48

SHA1
dfa65a499039a4d0fc62f81ce2b41a981c5e0b3e

SHA256
92f2c30a0fc9987d652e3514118fc52d2f14858ee106f0cfb951136d8f2676b3

SHA512
4bc02537afd195d360e41de7c712be753f75ab79ac7d1fdde53defffca15c9475cbc1d716408ffc05edfda38daa8aec1549ab73fb87b5156bda278f31c061352

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\filepost.py

Filesize
2KB

MD5
2ea9f2fe3c06a4a560bc1db53881d209

SHA1
5d0f199cd76dc0c256c2f6c038dca67e6b2c8374

SHA256
e5bfeaaa04475652fbb8bb5d018073061f861e653901f255b7fd8dd174b73de6

SHA512
ba8bbf4aa0d859d1e74a730164d7345c4e8b393ce88c4646aeee693a23df933db71bb4b0bd2a78f3d6a52af7d04b79f2d7eabdec34a83e362935deef9b06d857

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\packages\backports\makefile.py

Filesize
1KB

MD5
d26b39c4287d4132d46935c8e0b2e169

SHA1
df04cdfc410623de6479af9fcb007388cfb9aa9e

SHA256
9dbcedde2d1a80f54fd3b8eaaa08e16988cc9ae022fd6e44d04cb0662bd53bc1

SHA512
0b1ebba9da250ff2cd7a3e6bcff311dd1625d3bc0569463b5b6f549db88361b9523c09dc67bdeffe048bab1e6e5dfc096bd5c8372d3ede0d58d21372920326b7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\packages\backports\weakref_finalize.py

Filesize
5KB

MD5
f982b7d070fd238bd5c4069fbe0c795b

SHA1
d2ffb6de72f18ebe708d2b80f2c94e5d5e3bf489

SHA256
b5109a97938084d491c9bd03847a7edfc02d2250ac44ff01c45dcd5feeaba880

SHA512
a74e953918a971d70cb6df3d3001725c19baa99dec85a9bdcdf98f3eac70876ec2e833733f83927ef498fbd822ac1159094b72f97a36a558a6981f1fa1c437c0

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\packages\six.py

Filesize
33KB

MD5
6a3d2d8f7aa243d3576e2cec5fcf0ae2

SHA1
cc785b461d93a38116b3357589301ba20e9c8452

SHA256
6fd2ccd30057bfb13b4ab6c28c09b8c3037e86b1fe88dc6fd7c2e058d30c28fa

SHA512
8fd443c973411e400aeda941bac1f121447da7705bdb27003bf37da280695b8e270eebb4f3f80513773776c8e24ccd3b04293645ddde7e3345312527e143c5b6

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\poolmanager.py

Filesize
19KB

MD5
e258ab468f27d080ce2b552bcafdcbfa

SHA1
979ab46fb68c26b382adceae61138ecda7650d0d

SHA256
696ca15d1b4d3b82549c249556a29329077c1174ef526d5537da60b366dc38da

SHA512
26c64c8443e9cb933f14abc2cb3d6ffbff865cd11ce0749d5519374ce8ef9ced307780ed1edb5d63b6a716af7533ec721d3c606e88719be773f0d224bb59ebfb

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\request.py

Filesize
6KB

MD5
ade432a79c6ddab6cec8a19ceb7726f0

SHA1
157989366f7be9b626b40ed7bcb639cadc8d31ae

SHA256
61358536bed023087b1355bd75d7bd2ccefbbf65564c9e55efc5ee4d3c3b0f50

SHA512
62c873b1f6a3041b62f97fc0dcbc8afa94f7e1786ed6c976be8a160542ddfd76dddb993a3c21285590d2cc469ed12c3ffdd34437e8b4b088e208c50c17560f5b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\response.py

Filesize
29KB

MD5
d15dab20e01038cb65497c6699b7aa5d

SHA1
b29cb7de80c225172052a0272684fb2c1de4dbbf

SHA256
7e60c9005906ef5b854e7fac5524e1d88c345a6717418aa46d18e286fc018d4f

SHA512
c41d4d75359cbd31e69950e1c136eee6a57095f81a9f674481fca309301e4a9726bfb9e37961e5bf873d4e8e7862c5c39a9c0db4f29d129991c20b036923b0b7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\__init__.py

Filesize
1KB

MD5
f951fb1888473ee32752499ce9b841a5

SHA1
896463bcd6481c029de1ef982b1f532942fa6b02

SHA256
2449929a6aaa2f26b0f0fe75814226661f06c20f62d7349ef83a2a022b67da77

SHA512
fbb614667e169337204758bcf053eb65e55560bbb9a70cd749cf90f59059db20c4419c999c1086754df9d5c2306f9562262c689a8f49ec869309dabc5b6e547b

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\connection.py

Filesize
4KB

MD5
3530b0109675511c483045517d150970

SHA1
4211cec45876cd6cb663bf60bb1ce41582d5d098

SHA256
e4bc760753d6dbd2b1067d93d3190dd420604416b780654904aa10a11a201159

SHA512
3304aec303cc96c2cc81eb99588aa07a35959bdf0055a816ea9a32daf9eddc596c19ed0d72f6c8fab5abd0a25171c06a3779a2753d9b50090574e5c3f7d3ee98

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\proxy.py

Filesize
1KB

MD5
6823df66ec0cb4e27629cfa1cde0ebdc

SHA1
86f81687390427c86da97b882dd7ad2b938275d3

SHA256
cd4bcf3c226ba7a74e17437818055b39c97aa3ee2e5ca4ab1a24e492be6f512e

SHA512
d26ccd35b056700db507bd2fd26acab4c3a170cb6c69a0ec6a64caaf0392dfe3c4b94192460e75d083e6ee664e1915b0a2cc39f1d5ab8d114a37df3d97e6fe36

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\queue.py

Filesize
498B

MD5
716426931afad092ec0a85983ba6d094

SHA1
f768307325c0240b5c595bb79e618d87fe4016cb

SHA256
9d1817f3f797fbf564bf1a17d3de905a8cfc3ecd101d4004c482c263fecf9dc3

SHA512
9d3ef19da6ed7579964793bdca023c88ca94a7209d095f1be3305f85dfb3b83250dbd232ba0a72fd71ce5be9a01c5ad7f58575acbc1ec50660509fdba4fa1917

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\request.py

Filesize
3KB

MD5
aa68da750c53499c3d188288615c1276

SHA1
db735e5c86ca859b2ad760b5a06e73db6dcd6330

SHA256
0b4394b76b5c53a2d189027b61834ff46bcfad2be5ef388805e910fb99e50599

SHA512
1ddfea531509f486ed19bb2e0060a7ea63e5795cf3d788956a62ac83c9cc9af375f4b8e400525b5c499aef4e815f30954854f6f6b9f6bc4087986a7fa3cbec89

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\response.py

Filesize
3KB

MD5
6eb83504356cf0a5778199247f39e6ca

SHA1
a3b6dd229aa3b2be1a4148673a7a68d51ea53024

SHA256
189a60dc4822f6a6895d1c01879c2ff8c36e4566a7e4122ee34a117a8c563f6f

SHA512
e0b3f698b7af3098526395e440cbac30882eefc5cdb9cae0fae166888b9c6546cc67176a1aee50761e66fd6941a046645ca714a28e4ca09d75569c85a58ed2ab

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\retry.py

Filesize
21KB

MD5
c310ce867c31e498a8b1012ad22946b3

SHA1
0b9e7bfd446e8df15923b8cc02010075b9af8bdb

SHA256
67a5847f9d7c7933973f98ebe50490f60a892340d562ddd7b3710a9d86939aeb

SHA512
89aa812b63584535fe50d8178bb238419c679ed5ec1c4f359bc6eb6b0fe7379f9dd04ecfc5625f5928c1a0ed8b405d04e2277a49d43ff86ec75f3c8e030a9fdd

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\ssl_.py

Filesize
16KB

MD5
b9cf4ed19e64963ceb82c8c53583b394

SHA1
93d0641961b01c303cf84e54d8b66633ed410492

SHA256
5f8f80a96f756983e13f1ebec5b7faeb21c540a6eaa9f0bfe59b785a42d7d477

SHA512
be560da3ba6dba0b9045ddba347084a17bc5bcb1d19604c5ea46de022c974592e82f499a0bffc36add3165ed3eef0d33cd9d15f941a7cfcab6f54837d6420d02

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\ssl_match_hostname.py

Filesize
5KB

MD5
b0db7b081c5b51774a44654d586e0f40

SHA1
e1f6ab140aa52211a136d25f784a475f47434263

SHA256
22be1c65512398093c8140081d64a2ef0b4e3bcdd4098001636c450f5425fd60

SHA512
c935738635c94a25758742611485558c1d0991ad5100074e8655a202198a3fbe3ab2349ad5418abbbde774e490fa91300c94082d275da8b57b0e387937887d03

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\ssltransport.py

Filesize
6KB

MD5
33c5c43f65397d31eebbac57dc2cef3a

SHA1
78d59e903fecd211aa975ae4c8dc01b17c8fad44

SHA256
340faee6b313ac3143142f10cd129410a306d39eb584e0f8a814ebdd9e29bfa1

SHA512
1fdce1d1dc3e6927f159da507d574a5c7474b821ff9e660c1de4b3e26b008264dae2c4ee6fae548acf8eb2fd545965d2a8ebaec1292538b0cc728edc70ab9dc9

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\timeout.py

Filesize
9KB

MD5
888565383a82fcedaf9d2473b8911660

SHA1
d7f1427c1b312b0907973bd6f4c12e1e406c6825

SHA256
730ab874c93cee624748192d2b59a2609fbce46fb74f74664f6d2fed2142a67a

SHA512
835ff527992286df1f75078900c41b79b08d497bf5df510b5437c3b68ea317b1302466ae8ecf1a7e0424bea70cf71b5eddab9eb67e0586f94549552b747a81ff

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\url.py

Filesize
13KB

MD5
3b0f140e69e68b5aa6006e4c7621e365

SHA1
23d4363bf76691302dc9e216a3e4ad6dee839cdb

SHA256
942004ecce66c80f040dd5b4b09bb2c9985507d2bf8f7f258d684702715a5a81

SHA512
190637764fcb3ac705d942d992886652f98d9103da4962d7a0d83ac0bade9ef4dcd2d8e18e559ea6f21b23c46034e6d72b2488adcb8f282828dc0dd8cfa75765

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\site-packages\pip\_vendor\urllib3\util\wait.py

Filesize
5KB

MD5
cf3f909036467c64f0829344e4c49904

SHA1
7944d9bda2e8389c5ceba58a7ad704532a4f6dd2

SHA256
7ce5f4fdf6a8cc6d8fee25688d0a04d666f277078dc93726fa15c47c5ad3b4b2

SHA512
8362891953cda4b2fc8072880d8bc3f9403fb9dfe6a86c0bb017c9e1cf8a4dd0a7b32172acfcc92d236c38610a0851c32802b6aaa0cb4f6e35354074eb8ed195

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\test\test_importlib\extension\__init__.py

Filesize
147B

MD5
c3239b95575b0ad63408b8e633f9334d

SHA1
7dbb42dfa3ca934fb86b8e0e2268b6b793cbccdc

SHA256
6546a8ef1019da695edeca7c68103a1a8e746d88b89faf7d5297a60753fd1225

SHA512
5685131ad55f43ab73afccbef69652d03bb64e6135beb476bc987f316afe0198157507203b9846728bc7ea25bc88f040e7d2cb557c9480bac72f519d6ba90b25

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Lib\test\test_importlib\frozen\__main__.py

Filesize
62B

MD5
47878c074f37661118db4f3525b2b6cb

SHA1
9671e2ef6e3d9fa96e7450bcee03300f8d395533

SHA256
b4dc0b48d375647bcfab52d235abf7968daf57b6bbdf325766f31ce7752d7216

SHA512
13c626ada191848c31321c74eb7f0f1fde5445a82d34282d69e2b086ba6b539d8632c82bba61ff52185f75fec2514dad66139309835e53f5b09a3c5a2ebecff5

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\Scripts\pip3.12.exe

Filesize
105KB

MD5
938c3dbfcd87574a64c7fee57ee21c22

SHA1
919106b0cfb112acd876cf77b17986d74f87c779

SHA256
360c1ee041820d3a420911e7edbafef09fd962df0ad84604398e7ba441fef348

SHA512
3ca4bf90c153308ebf745c1393e43dc3ac484b580ea2fd5b403948031b1b270186bd22121e01c6fca74ea496026d966dc4cf4a8689399db8eba7213f4bd089d7

Download Submit
C:\Users\Admin\AppData\Local\Programs\Python\Python312\python.exe

Filesize
101KB

MD5
04a6848457a5f80d41295c11b475b879

SHA1
028fb30a4649b238b6a55ac61c55565c9d0a9c70

SHA256
5aba6ec903f2e0e946459f98dc45c8129d3f22187f5adac00713d733191d3a3f

SHA512
e6bf99e393276260fc1f8b2ff32c646b50ec57b906f9f12993ea38938df91a244378e066519c5dcceecd1869ec9cf3ced63da0783b1d2e7243221ef164bafd55

Download Submit
C:\Users\Admin\AppData\Local\Temp\$inst\2.tmp

Filesize
36B

MD5
8708699d2c73bed30a0a08d80f96d6d7

SHA1
684cb9d317146553e8c5269c8afb1539565f4f78

SHA256
a32e0a83001d2c5d41649063217923dac167809cab50ec5784078e41c9ec0f0f

SHA512
38ece3e441cc5d8e97781801d5b19bdede6065a0a50f7f87337039edeeb4a22ad0348e9f5b5542b26236037dd35d0563f62d7f4c4f991c51020552cfae03b264

Download Submit
C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\icons.res

Filesize
32B

MD5
45d02203801ec5cae86ed0a68727b0fa

SHA1
1b22a6df3fc0ef23c6c5312c937db7c8c0df6703

SHA256
5e743f477333066c29c3742cc8f9f64a8cb9c54b71dbc8c69af5025d31f8c121

SHA512
8da0bf59066223aab96595c9fbf8532baa34f1f9c2c0dee674d310a82677b6c7d6a1cc0bbaa75262b986d2b805b049ec3a2bfb25a9ae30fe6d02e32660f15e83

Download Submit
C:\Users\Admin\AppData\Local\Temp\958f1c9f02b04446bb627ef31f381a4c\taskhost.ini

Filesize
44B

MD5
dbfea325d1e00a904309a682051778ad

SHA1
525562934d0866f2ba90b3c25ea005c8c5f1e9fb

SHA256
15a3a3303b4a77272ddb04454333a4c06aa2a113f210ba4a03314026e0821e6d

SHA512
cd853c67c2b1a44c3f592ff42d207b2251e8b9bc1eb22fc12cd710329069ef75abffccd169418c4f9bd008a40f2fbbfc6904519f27fd658f316309f94b8ff59c

Download Submit
C:\Users\Admin\AppData\Local\Temp\TCD82A0.tmp\gb.xsl

Filesize
262KB

MD5
51d32ee5bc7ab811041f799652d26e04

SHA1
412193006aa3ef19e0a57e16acf86b830993024a

SHA256
6230814bf5b2d554397580613e20681752240ab87fd354ececf188c1eabe0e97

SHA512
5fc5d889b0c8e5ef464b76f0c4c9e61bda59b2d1205ac9417cc74d6e9f989fb73d78b4eb3044a1a1e1f2c00ce1ca1bd6d4d07eeadc4108c7b124867711c31810

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Office\Recent\index.dat

Filesize
402B

MD5
301f0b4133f13697863100a98303483a

SHA1
1e6872806461a7ae9dd281cf8ef60a3efd346312

SHA256
f5c29daad314b659b4f57f22e85da00f295e1229901147c5243993f6c6728eb5

SHA512
3445b07922b308f5b55b780c4756a4c43156d28ae8e74a38baed842b16b1f070ab943b4a969037fdd5c74de11adf5ca9f7cded9e0473cf91d4023277bcabb082

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Templates\~WRD0000.tmp

Filesize
31KB

MD5
891beff32df0241816b0bc146759b941

SHA1
0a5e836963de2bcf5e70ce32f9de6a35cf67ddbc

SHA256
4dba979a1eb5f537742ef87c1beb697b505bd372ef11ee5ae1d4e4eddfc99fad

SHA512
bd43c8cc794483e29ece573daf939a7a5cc44a2395beaa7b8d315a572adefe213d466c9c19889a042c48a8e33c856aa25f8271de13a439bff403f5e6793750c8

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\UProof\CUSTOM.DIC

Filesize
16B

MD5
d29962abc88624befc0135579ae485ec

SHA1
e40a6458296ec6a2427bcb280572d023a9862b31

SHA256
a91a702aab9b8dd722843d3d208a21bcfa6556dfc64e2ded63975de4511eb866

SHA512
4311e87d8d5559248d4174908817a4ddc917bf7378114435cf12da8ccb7a1542c851812afbaf7dc106771bdb2e2d05f52e7d0c50d110fc7fffe4395592492c2f

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
f5e7910e962a2690eb693030198e0383

SHA1
c8c2e307f304e2c0d4f97270a3e7fec3d72104ee

SHA256
d7db0c9415b6ce90099f66787f7864d3f88a6f55f36f4acf02f6d7aa6c185092

SHA512
1951a179bdfbfa84ce1c141acde2fb88c83a9161dc1b5324924e7426fbbeaa193770ef8fc85bdb29c001706a2046d14c763be210ef6fe8b149d447546e9e0f45

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\fb3b0dbfee58fac8.customDestinations-ms

Filesize
3KB

MD5
303e585e2e32dfcafce70217ac879c41

SHA1
34ee81b9a3644a02ac5c39bb7c4723ca9919c80e

SHA256
c4b4979126d8042f546d5b4d92d0f4cd096d10cbebc5491ca6ee0ba18bd04946

SHA512
602cd3592a4f18d9c765cc149bed883906b17458738270dc637bd85f830e897e8e639e7e7382ad556fa3b6a11cdec39da1ac55640e034e56aa6944479b5317b5

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\fb3b0dbfee58fac8.customDestinations-ms

Filesize
2KB

MD5
39224af4d22d1f4d90b98ac1e7e1df18

SHA1
ceaee0d915cda6aeffdb4e8548ec3d97fe577f39

SHA256
5fd58fd5b536247f908c8442febd43105d2322685586f2021fc635eaaafe7cdb

SHA512
dcde85e355556070cbaccfa2ec6270b5f569f3e59100ff52b6a11e20b432f0f412de1edf5edd177ac6263ff1a30493d811c05f15f09fa9708488d8bd7e20799d

Download Submit
C:\Users\Admin\Downloads\GDI-and-Bytebeats-main.zip

Filesize
12KB

MD5
40f081e0b75ef38162c48d98c5053586

SHA1
851892a0f3e9cc1be701e20476b2059e016ac6f5

SHA256
1f08641b819d7b961c771ed253974d18471c9ad72384cbea9eecdcc057d1a538

SHA512
3f7b9870860edcc7188ac091f314dbe3efb62e17c611df048b2d0ab6e97e852842063bad582a944c6fb3fc5bdd5a1dc8230631109535dcb3a4cb113183e6dcf6

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 193369.crdownload

Filesize
25.3MB

MD5
bbcb2fcf9d739f776fb6414afc12c80d

SHA1
2d78877db5a8da134ab54ed952b961a7e750ec7d

SHA256
44810512af577ca70b3269b8570b10825ec2ace2b86e4297e767a0f4c0ee8bfd

SHA512
0572c6345f6a4f7f3e5c2ff858e3ca7ca54ae4478f3d59d8e18cb0f596e61dcf12aef579db229e83d63b30f15d6684ee6bb3feaea9413e5e636a503933057678

Download Submit
C:\Windows\Free Youtube Downloader\Free Youtube Downloader\Free YouTube Downloader.exe

Filesize
153KB

MD5
f33a4e991a11baf336a2324f700d874d

SHA1
9da1891a164f2fc0a88d0de1ba397585b455b0f4

SHA256
a87524035509ff7aa277788e1a9485618665b7da35044d70c41ec0f118f3dfd7

SHA512
edf066968f31451e21c7c21d3f54b03fd5827a8526940c1e449aad7f99624577cbc6432deba49bb86e96ac275f5900dcef8d7623855eb3c808e084601ee1df20

Download Submit
C:\Windows\Temp\{38AD5A97-EA2E-44BA-B636-F140F7233195}\.ba\SideBar.png

Filesize
50KB

MD5
888eb713a0095756252058c9727e088a

SHA1
c14f69f2bef6bc3e2162b4dd78e9df702d94cdb4

SHA256
79434bd1368f47f08acf6db66638531d386bf15166d78d9bfea4da164c079067

SHA512
7c59f4ada242b19c2299b6789a65a1f34565fed78730c22c904db16a9872fe6a07035c6d46a64ee94501fbcd96de586a8a5303ca22f33da357d455c014820ca0

Download Submit
C:\Windows\Temp\{38AD5A97-EA2E-44BA-B636-F140F7233195}\.be\python-3.12.5-amd64.exe

Filesize
858KB

MD5
7d3c4418445bbdc0b7c521a747ec014c

SHA1
bff06746ba8d31cfc34637bac0b86158bc2de7ba

SHA256
f268a252ca87e394a9b653a05a9ce715e1808ccf480fb84197ebf8fbc4482146

SHA512
033ab1141c1edd39ae5b713b9b20bededf2cb9fef493d93d46c87e2f40b9f0cbe73cba7cb7c6b0f5613fa058bd67ad400aecc358bd4f544470aa8a1ca193e91a

Download Submit
C:\Windows\Temp\{38AD5A97-EA2E-44BA-B636-F140F7233195}\pip_JustForMe

Filesize
268KB

MD5
00fe51fe164f80201dd25ee3f86c4509

SHA1
1d37168ea7aef20e665a361db13f1576c505401c

SHA256
9fbc3da5393be0ab2ca64a7921cc09a3961b6f34484710e33a626dd357fd2888

SHA512
6006c08fddf1c3d23546daa453b52e5022fb08dbe8471294155b57835af657a177e7b6f6aabb97adcbd71f612cfd054ca0b07089aa57b17b7a6ed15a74d91be6

Download Submit
memory/412-13246-0x0000000000400000-0x0000000000444000-memory.dmp

Filesize
272KB

Download
memory/412-13250-0x0000000000400000-0x0000000000444000-memory.dmp

Filesize
272KB

Download
memory/1440-13659-0x0000000000400000-0x00000000004DD000-memory.dmp

Filesize
884KB

Download
memory/1440-13544-0x0000000004CA0000-0x0000000004CAA000-memory.dmp

Filesize
40KB

Download
memory/1440-13543-0x0000000004BD0000-0x0000000004C62000-memory.dmp

Filesize
584KB

Download
memory/1440-13542-0x0000000005250000-0x00000000057F4000-memory.dmp

Filesize
5.6MB

Download
memory/1440-13541-0x0000000000170000-0x00000000001E4000-memory.dmp

Filesize
464KB

Download
memory/2200-13647-0x0000000000400000-0x00000000004DD000-memory.dmp

Filesize
884KB

Download
memory/2284-13420-0x0000000000400000-0x000000000070B000-memory.dmp

Filesize
3.0MB

Download
memory/2756-13626-0x0000000000400000-0x00000000004DD000-memory.dmp

Filesize
884KB

Download
memory/2920-13508-0x0000000000400000-0x000000000043C000-memory.dmp

Filesize
240KB

Download
memory/2992-13305-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/2992-13278-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/2992-13312-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/3228-13662-0x0000000000400000-0x000000000084A000-memory.dmp

Filesize
4.3MB

Download
memory/4396-13167-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-13168-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-12919-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-13169-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-13170-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-12923-0x00007FFB863F0000-0x00007FFB86400000-memory.dmp

Filesize
64KB

Download
memory/4396-12917-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-12922-0x00007FFB863F0000-0x00007FFB86400000-memory.dmp

Filesize
64KB

Download
memory/4396-12920-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-12918-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4396-12921-0x00007FFB88450000-0x00007FFB88460000-memory.dmp

Filesize
64KB

Download
memory/4472-13249-0x0000000000400000-0x0000000000444000-memory.dmp

Filesize
272KB

Download
memory/4592-13767-0x0000000000F20000-0x0000000000F2E000-memory.dmp

Filesize
56KB

Download
memory/4668-13245-0x0000000010000000-0x0000000010030000-memory.dmp

Filesize
192KB

Download
memory/4668-13243-0x0000000000430000-0x00000000004A5000-memory.dmp

Filesize
468KB

Download
memory/4668-13241-0x0000000010000000-0x0000000010030000-memory.dmp

Filesize
192KB

Download
memory/4948-13260-0x0000000000400000-0x0000000000455000-memory.dmp

Filesize
340KB

Download
memory/4948-13274-0x0000000000400000-0x0000000000455000-memory.dmp

Filesize
340KB

Download
memory/5592-12900-0x0000000001000000-0x0000000001026000-memory.dmp

Filesize
152KB

Download
memory/5592-12899-0x0000000001000000-0x0000000001026000-memory.dmp

Filesize
152KB

Download
memory/5728-13608-0x0000000000860000-0x0000000000E0C000-memory.dmp

Filesize
5.7MB

Download
memory/5728-13306-0x0000000000400000-0x00000000004BC000-memory.dmp

Filesize
752KB

Download
memory/5728-13311-0x0000000000400000-0x00000000004BC000-memory.dmp

Filesize
752KB

Download
memory/5812-12907-0x0000000001000000-0x0000000001026000-memory.dmp

Filesize
152KB

Download
memory/5864-13521-0x0000000000400000-0x000000000043C000-memory.dmp

Filesize
240KB

Download
memory/5876-13509-0x000001A745060000-0x000001A74508E000-memory.dmp

Filesize
184KB

Download
memory/5884-13638-0x0000000000400000-0x000000000084A000-memory.dmp

Filesize
4.3MB

Download
memory/5948-13568-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13558-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13557-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13563-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13569-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13559-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13564-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13565-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13566-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/5948-13567-0x000002D034D40000-0x000002D034D41000-memory.dmp

Filesize
4KB

Download
memory/6136-13650-0x0000000000400000-0x000000000084A000-memory.dmp

Filesize
4.3MB

Download

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response